Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Rangeeos Security Vulnerabilities

cve
cve

CVE-2020-16279

The Kommbox component in Rangee GmbH RangeeOS 8.0.4 is vulnerable to Remote Code Execution due to untrusted user supplied input being passed to the command line without sanitization.

9.8CVSS

9.7AI Score

0.009EPSS

2020-08-20 04:15 PM
26
cve
cve

CVE-2020-16280

Multiple Rangee GmbH RangeeOS 8.0.4 modules store credentials in plaintext including credentials of users for several external facing administrative services, domain joined users, and local administrators. To exploit the vulnerability a local attacker must have access to the underlying operating sy...

5.5CVSS

5.4AI Score

0.0004EPSS

2020-08-20 04:15 PM
16
cve
cve

CVE-2020-16281

The Kommbox component in Rangee GmbH RangeeOS 8.0.4 could allow a local authenticated attacker to escape from the restricted environment and execute arbitrary code due to unrestricted context menus being accessible.

7.8CVSS

7.6AI Score

0.0004EPSS

2020-08-20 04:15 PM
16
cve
cve

CVE-2020-16282

In the default configuration of Rangee GmbH RangeeOS 8.0.4, all components are executed in the context of the privileged root user. This may allow a local attacker to break out of the restricted environment or inject malicious code into the application and fully compromise the operating system.

8.8CVSS

8.3AI Score

0.0004EPSS

2020-08-20 04:15 PM
17