Lucene search

Simple Diagnostics Agent Security Vulnerabilities

cve

CVE-2022-27657

A highly privileged remote attacker, can gain unauthorized access to display contents of restricted directories by exploiting insufficient validation of path information in SAP Focused Run (Simple Diagnostics Agent 1.0) - version...

2.7CVSS

3.9AI Score

0.005EPSS

2022-04-12 05:15 PM

cve

CVE-2022-24396

The Simple Diagnostics Agent - versions 1.0 up to version 1.57, does not perform any authentication checks for functionalities that can be accessed via localhost on http port 3005. Due to lack of authentication checks, an attacker could access administrative or other privileged functionalities and....

7.8CVSS

7.6AI Score

0.001EPSS

2022-03-10 05:46 PM

cve

CVE-2022-22547

Simple Diagnostics Agent - versions 1.0 (up to version 1.57.), allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security...

7.5CVSS

7.3AI Score

0.025EPSS

2022-03-10 05:45 PM