Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2018-7235

Summary
Assigner-schneider
Assigner Org ID-076d1eb6-cfab-4401-b34d-6dfc2a413bdb
Published At-09 Mar, 2018 | 23:00
Updated At-17 Sep, 2024 | 03:44
Rejected At-
Credits

A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow arbitrary system file download due to lack of validation of the shell meta characters with the value of 'system.download.sd_file'

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:schneider
Assigner Org ID:076d1eb6-cfab-4401-b34d-6dfc2a413bdb
Published At:09 Mar, 2018 | 23:00
Updated At:17 Sep, 2024 | 03:44
Rejected At:
▼CVE Numbering Authority (CNA)

A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow arbitrary system file download due to lack of validation of the shell meta characters with the value of 'system.download.sd_file'

Affected Products
Vendor
Schneider Electric SESchneider Electric SE
Product
Pelco Sarix Professional
Versions
Affected
  • all firmware versions prior to 3.29.75
Problem Types
TypeCWE IDDescription
textN/ACommand Execution
Type: text
CWE ID: N/A
Description: Command Execution
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.schneider-electric.com/en/download/document/SEVD-2018-058-01/
x_refsource_CONFIRM
Hyperlink: https://www.schneider-electric.com/en/download/document/SEVD-2018-058-01/
Resource:
x_refsource_CONFIRM
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.schneider-electric.com/en/download/document/SEVD-2018-058-01/
x_refsource_CONFIRM
x_transferred
Hyperlink: https://www.schneider-electric.com/en/download/document/SEVD-2018-058-01/
Resource:
x_refsource_CONFIRM
x_transferred
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:cybersecurity@se.com
Published At:09 Mar, 2018 | 23:29
Updated At:02 Feb, 2022 | 02:10

A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow arbitrary system file download due to lack of validation of the shell meta characters with the value of 'system.download.sd_file'

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Primary2.07.8HIGH
AV:N/AC:L/Au:N/C:C/I:N/A:N
Type: Primary
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Type: Primary
Version: 2.0
Base score: 7.8
Base severity: HIGH
Vector:
AV:N/AC:L/Au:N/C:C/I:N/A:N
CPE Matches
Schneider Electric SE
schneider-electric
>>mps110-1_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:mps110-1_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>mps110-1>>-
cpe:2.3:h:schneider-electric:mps110-1:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imps110-1er_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imps110-1er_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imps110-1er>>-
cpe:2.3:h:schneider-electric:imps110-1er:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>ibps110-1er_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:ibps110-1er_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>ibps110-1er>>-
cpe:2.3:h:schneider-electric:ibps110-1er:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp1110-1_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp1110-1_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp1110-1>>-
cpe:2.3:h:schneider-electric:imp1110-1:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp1110-1e_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp1110-1e_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp1110-1e>>-
cpe:2.3:h:schneider-electric:imp1110-1e:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp1110-1er_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp1110-1er_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp1110-1er>>-
cpe:2.3:h:schneider-electric:imp1110-1er:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>ibp1110-1er_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:ibp1110-1er_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>ibp1110-1er>>-
cpe:2.3:h:schneider-electric:ibp1110-1er:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp219-1_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp219-1_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp219-1>>-
cpe:2.3:h:schneider-electric:imp219-1:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp219-1e_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp219-1e_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp219-1e>>-
cpe:2.3:h:schneider-electric:imp219-1e:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp219-1er_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp219-1er_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp219-1er>>-
cpe:2.3:h:schneider-electric:imp219-1er:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>ibp219-1er_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:ibp219-1er_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>ibp219-1er>>-
cpe:2.3:h:schneider-electric:ibp219-1er:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp319-1_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp319-1_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp319-1>>-
cpe:2.3:h:schneider-electric:imp319-1:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp319-1e_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp319-1e_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp319-1e>>-
cpe:2.3:h:schneider-electric:imp319-1e:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>ibp319-1er_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:ibp319-1er_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>ibp319-1er>>-
cpe:2.3:h:schneider-electric:ibp319-1er:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp519-1_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp519-1_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp519-1>>-
cpe:2.3:h:schneider-electric:imp519-1:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp319-1er_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp319-1er_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp319-1er>>-
cpe:2.3:h:schneider-electric:imp319-1er:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp519-1e_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp519-1e_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp519-1e>>-
cpe:2.3:h:schneider-electric:imp519-1e:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp519-1er_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imp519-1er_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imp519-1er>>-
cpe:2.3:h:schneider-electric:imp519-1er:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>ibp519-1er_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:ibp519-1er_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>ibp519-1er>>-
cpe:2.3:h:schneider-electric:ibp519-1er:-:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imps110-1e_firmware>>Versions before 3.29.67(exclusive)
cpe:2.3:o:schneider-electric:imps110-1e_firmware:*:*:*:*:*:*:*:*
Schneider Electric SE
schneider-electric
>>imps110-1e>>-
cpe:2.3:h:schneider-electric:imps110-1e:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-20Primarynvd@nist.gov
CWE ID: CWE-20
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://www.schneider-electric.com/en/download/document/SEVD-2018-058-01/cybersecurity@se.com
Patch
Vendor Advisory
Hyperlink: https://www.schneider-electric.com/en/download/document/SEVD-2018-058-01/
Source: cybersecurity@se.com
Resource:
Patch
Vendor Advisory

Change History

0
Information is not available yet

Similar CVEs

163Records found
CVE-2019-0166
Matching Score-4
Assigner-Intel Corporation
ShareView Details
Matching Score-4
Assigner-Intel Corporation
CVSS Score-7.5||HIGH
EPSS-0.93% / 75.13%
||
7 Day CHG~0.00%
Published-18 Dec, 2019 | 21:08
Updated-04 Aug, 2024 | 17:44
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient input validation in the subsystem for Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-active_management_technology_firmwareIntel(R) AMT
CWE ID-CWE-20
Improper Input Validation
CVE-2018-19952
Matching Score-4
Assigner-QNAP Systems, Inc.
ShareView Details
Matching Score-4
Assigner-QNAP Systems, Inc.
CVSS Score-7.5||HIGH
EPSS-0.30% / 53.12%
||
7 Day CHG~0.00%
Published-02 Nov, 2020 | 15:57
Updated-17 Sep, 2024 | 02:58
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

If exploited, this SQL injection vulnerability could allow remote attackers to obtain application information. This issue affects: QNAP Systems Inc. Music Station versions prior to 5.1.13; versions prior to 5.2.9; versions prior to 5.3.11.

Action-Not Available
Vendor-QNAP Systems, Inc.
Product-music_stationqtsMusic Station
CWE ID-CWE-80
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-943
Improper Neutralization of Special Elements in Data Query Logic
CWE ID-CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVE-2021-45116
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-0.18% / 39.66%
||
7 Day CHG-0.06%
Published-04 Jan, 2022 | 23:12
Updated-22 May, 2025 | 19:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. Due to leveraging the Django Template Language's variable resolution logic, the dictsort template filter was potentially vulnerable to information disclosure, or an unintended method call, if passed a suitably crafted key.

Action-Not Available
Vendor-n/aDjangoFedora Project
Product-fedoradjangon/a
CWE ID-CWE-20
Improper Input Validation
CVE-2021-44481
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-0.25% / 48.27%
||
7 Day CHG~0.00%
Published-15 Apr, 2022 | 17:17
Updated-04 Aug, 2024 | 04:25
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of parameter validation in calls to memcpy in check_and_set_timeout in sr_unix/ztimeoutroutines.c allows attackers to attempt to read from a NULL pointer.

Action-Not Available
Vendor-fisglobalyottadbn/a
Product-gt.myottadbn/a
CWE ID-CWE-20
Improper Input Validation
CVE-2021-41769
Matching Score-4
Assigner-Siemens
ShareView Details
Matching Score-4
Assigner-Siemens
CVSS Score-7.5||HIGH
EPSS-0.47% / 63.80%
||
7 Day CHG~0.00%
Published-11 Jan, 2022 | 11:27
Updated-04 Aug, 2024 | 03:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A vulnerability has been identified in SIPROTEC 5 6MD85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 6MD86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 6MD89 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 6MU85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7KE85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SA82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SA86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SA87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SD82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SD86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SD87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SJ81 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SJ82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SJ85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SJ86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SK82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SK85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SL82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7SL86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SL87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SS85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7ST85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7SX85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UM85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UT82 devices (CPU variant CP100) (All versions < V8.83), SIPROTEC 5 7UT85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UT86 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7UT87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7VE85 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 7VK87 devices (CPU variant CP300) (All versions < V8.83), SIPROTEC 5 Compact 7SX800 devices (CPU variant CP050) (All versions < V8.83). An improper input validation vulnerability in the web server could allow an unauthenticated user to access device information.

Action-Not Available
Vendor-Siemens AG
Product-6md857sa87_firmware6md867um856md89_firmware7sl87_firmware7sk85_firmware7ut867ss857sa877ke85_firmware7sd87_firmware6mu85_firmware6md896mu857st857vk877sd86_firmware7sl82_firmware7ut857sj81_firmware7ve85_firmware7st85_firmware7sl827sd867ke857sa86_firmware7sx8007ut86_firmware6md85_firmware7sk857sk827sx800_firmware7sd877sx85_firmware6md86_firmware7sk82_firmware7sa867sj827sj857sj86_firmware7sl86_firmware7sj817ut82_firmware7ut85_firmware7sj82_firmware7um85_firmware7ve857ut877vk87_firmware7sa827sj85_firmware7sl867sx857sd827ut87_firmware7ut827sj867sd82_firmware7sl877sa82_firmware7ss85_firmwareSIPROTEC 5 7SD82 devices (CPU variant CP100)SIPROTEC 5 6MD86 devices (CPU variant CP300)SIPROTEC 5 7VE85 devices (CPU variant CP300)SIPROTEC 5 7UT87 devices (CPU variant CP300)SIPROTEC 5 7ST85 devices (CPU variant CP300)SIPROTEC 5 7SL82 devices (CPU variant CP100)SIPROTEC 5 7UT82 devices (CPU variant CP100)SIPROTEC 5 6MU85 devices (CPU variant CP300)SIPROTEC 5 7SK82 devices (CPU variant CP100)SIPROTEC 5 7SK85 devices (CPU variant CP300)SIPROTEC 5 7UT86 devices (CPU variant CP300)SIPROTEC 5 7SA82 devices (CPU variant CP100)SIPROTEC 5 7VK87 devices (CPU variant CP300)SIPROTEC 5 7SD86 devices (CPU variant CP300)SIPROTEC 5 7SJ85 devices (CPU variant CP300)SIPROTEC 5 7SJ82 devices (CPU variant CP100)SIPROTEC 5 7SL87 devices (CPU variant CP300)SIPROTEC 5 7SX85 devices (CPU variant CP300)SIPROTEC 5 Compact 7SX800 devices (CPU variant CP050)SIPROTEC 5 6MD85 devices (CPU variant CP300)SIPROTEC 5 7UM85 devices (CPU variant CP300)SIPROTEC 5 7SA86 devices (CPU variant CP300)SIPROTEC 5 7UT85 devices (CPU variant CP300)SIPROTEC 5 7SL86 devices (CPU variant CP300)SIPROTEC 5 7KE85 devices (CPU variant CP300)SIPROTEC 5 7SJ86 devices (CPU variant CP300)SIPROTEC 5 7SS85 devices (CPU variant CP300)SIPROTEC 5 7SD87 devices (CPU variant CP300)SIPROTEC 5 7SA87 devices (CPU variant CP300)SIPROTEC 5 6MD89 devices (CPU variant CP300)SIPROTEC 5 7SJ81 devices (CPU variant CP100)
CWE ID-CWE-20
Improper Input Validation
CVE-2021-38957
Matching Score-4
Assigner-IBM Corporation
ShareView Details
Matching Score-4
Assigner-IBM Corporation
CVSS Score-3.1||LOW
EPSS-0.21% / 43.31%
||
7 Day CHG~0.00%
Published-07 Jan, 2022 | 17:55
Updated-17 Sep, 2024 | 04:19
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive information due to hazardous input validation during QR code generation. IBM X-Force ID: 212040.

Action-Not Available
Vendor-IBM Corporation
Product-security_verify_accessSecurity Verify Access
CWE ID-CWE-20
Improper Input Validation
CVE-2021-31863
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-0.79% / 72.93%
||
7 Day CHG~0.00%
Published-28 Apr, 2021 | 06:17
Updated-03 Aug, 2024 | 23:10
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient input validation in the Git repository integration of Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows Redmine users to read arbitrary local files accessible by the application server process.

Action-Not Available
Vendor-redminen/aDebian GNU/Linux
Product-redminedebian_linuxn/a
CWE ID-CWE-20
Improper Input Validation
CVE-2024-57960
Matching Score-4
Assigner-Huawei Technologies
ShareView Details
Matching Score-4
Assigner-Huawei Technologies
CVSS Score-7.7||HIGH
EPSS-0.03% / 6.85%
||
7 Day CHG~0.00%
Published-06 Feb, 2025 | 12:32
Updated-17 Mar, 2025 | 14:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Input verification vulnerability in the ExternalStorageProvider module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Action-Not Available
Vendor-Huawei Technologies Co., Ltd.
Product-harmonyosemuiEMUIHarmonyOS
CWE ID-CWE-20
Improper Input Validation
CVE-2022-36853
Matching Score-4
Assigner-Samsung Mobile
ShareView Details
Matching Score-4
Assigner-Samsung Mobile
CVSS Score-3.3||LOW
EPSS-0.10% / 28.48%
||
7 Day CHG~0.00%
Published-09 Sep, 2022 | 14:40
Updated-03 Aug, 2024 | 10:14
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Intent redirection in Photo Editor prior to SMR Sep-2022 Release 1 allows attacker to get sensitive information.

Action-Not Available
Vendor-Google LLCSamsung Electronics
Product-androidSamsung Mobile Devices
CWE ID-CWE-20
Improper Input Validation
CVE-2024-52279
Matching Score-4
Assigner-Apache Software Foundation
ShareView Details
Matching Score-4
Assigner-Apache Software Foundation
CVSS Score-7.5||HIGH
EPSS-0.39% / 58.90%
||
7 Day CHG~0.00%
Published-03 Aug, 2025 | 10:02
Updated-05 Aug, 2025 | 18:44
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Apache Zeppelin: Arbitrary file read by adding malicious JDBC connection string

Improper Input Validation vulnerability in Apache Zeppelin. The fix for JDBC URL validation in CVE-2024-31864 did not account for URL encoded input. This issue affects Apache Zeppelin: from 0.11.1 before 0.12.0. Users are recommended to upgrade to version 0.12.0, which fixes the issue.

Action-Not Available
Vendor-The Apache Software Foundation
Product-zeppelinApache Zeppelin
CWE ID-CWE-20
Improper Input Validation
CVE-2024-45601
Matching Score-4
Assigner-GitHub, Inc.
ShareView Details
Matching Score-4
Assigner-GitHub, Inc.
CVSS Score-7.5||HIGH
EPSS-0.13% / 33.14%
||
7 Day CHG~0.00%
Published-18 Sep, 2024 | 17:49
Updated-20 Sep, 2024 | 12:30
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Local file Inclusion via static file serving functionality in Mesop

Mesop is a Python-based UI framework designed for rapid web apps development. A vulnerability has been discovered and fixed in Mesop that could potentially allow unauthorized access to files on the server hosting the Mesop application. The vulnerability was related to insufficient input validation in a specific endpoint. This could have allowed an attacker to access files not intended to be served. Users are strongly advised to update to the latest version of Mesop immediately. The latest version includes a fix for this vulnerability. At time of publication 0.12.4 is the most recently available version of Mesop.

Action-Not Available
Vendor-Google LLC
Product-mesop
CWE ID-CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE ID-CWE-20
Improper Input Validation
CVE-2020-5260
Matching Score-4
Assigner-GitHub, Inc.
ShareView Details
Matching Score-4
Assigner-GitHub, Inc.
CVSS Score-9.3||CRITICAL
EPSS-27.36% / 96.23%
||
7 Day CHG~0.00%
Published-14 Apr, 2020 | 22:50
Updated-04 Aug, 2024 | 08:22
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
malicious URLs may cause Git to present stored credentials to the wrong server

Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. Git uses external "credential helper" programs to store and retrieve passwords or other credentials from secure storage provided by the operating system. Specially-crafted URLs that contain an encoded newline can inject unintended values into the credential helper protocol stream, causing the credential helper to retrieve the password for one server (e.g., good.example.com) for an HTTP request being made to another server (e.g., evil.example.com), resulting in credentials for the former being sent to the latter. There are no restrictions on the relationship between the two, meaning that an attacker can craft a URL that will present stored credentials for any host to a host of their choosing. The vulnerability can be triggered by feeding a malicious URL to git clone. However, the affected URLs look rather suspicious; the likely vector would be through systems which automatically clone URLs not visible to the user, such as Git submodules, or package systems built around Git. The problem has been patched in the versions published on April 14th, 2020, going back to v2.17.x. Anyone wishing to backport the change further can do so by applying commit 9a6bbee (the full release includes extra checks for git fsck, but that commit is sufficient to protect clients against the vulnerability). The patched versions are: 2.17.4, 2.18.3, 2.19.4, 2.20.3, 2.21.2, 2.22.3, 2.23.2, 2.24.2, 2.25.3, 2.26.1.

Action-Not Available
Vendor-git-scmgitgitCanonical Ltd.openSUSEFedora ProjectDebian GNU/Linux
Product-ubuntu_linuxdebian_linuxfedoragitleapgit
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-522
Insufficiently Protected Credentials
CVE-2016-10991
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-0.60% / 68.47%
||
7 Day CHG~0.00%
Published-17 Sep, 2019 | 14:31
Updated-06 Aug, 2024 | 03:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

The imdb-widget plugin before 1.0.9 for WordPress has Local File Inclusion.

Action-Not Available
Vendor-imdb-widget_projectn/a
Product-imdb-widgetn/a
CWE ID-CWE-20
Improper Input Validation
  • Previous
  • 1
  • 2
  • 3
  • 4
  • Next
Details not found