CVE-2024-13931

Relative Path Traversal vulnerabilities in ASPECT allow access to file resources if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

CVE-2024-13931

creationtimestamp| type| source ---|---|--- 2025-05-22 20:03:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lprvwb76w72q...

CVE-2024-13931

CVE-2024-13931 describes a Relative Path Traversal in ABB ASPECT product line (ASPECT-Enterprise, NEXUS Series, MATRIX Series) up to version 3.08.03. The underlying issue allows an attacker who has compromised a session administrator’s credentials to access file resources. Affected products and v...

CVE-2019-13931

creationtimestamp| type| source ---|---|--- 2024-03-11 09:11:24+00:00| seen| https://t.me/ctinow/204527...

Important: Red Hat Security Advisory: java-17-openjdk security and bug fix update

An update for java-17-openjdk is now available for Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 8.8 Extended Update Support, Red Hat Enterprise Linux 9, and Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of...

CVE-2017-13931

Rejected reason: This candidate is unused by its CNA...

CVE-2018-13931

CVE-2018-13931 is rejected/not used and does not represent an active vulnerability entry.

SUSE: Security Advisory (SUSE-SU-2019:13931-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Apache TomEE JMX Vulnerability (CVE-2020-13931)

Apache TomEE is prone to a misconfiguration vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...

CVE-2020-13931

If Apache TomEE 8.0.0-M1 - 8.0.3, 7.1.0 - 7.1.3, 7.0.0-M1 - 7.0.8, 1.0.0 - 1.7.5 is configured to use the embedded ActiveMQ broker, and the broker config is misconfigured, a JMX port is opened on TCP port 1099, which does not include authentication. CVE-2020-11969 previously addressed the creatio...

CVE-2020-13931

If Apache TomEE 8.0.0-M1 - 8.0.3, 7.1.0 - 7.1.3, 7.0.0-M1 - 7.0.8, 1.0.0 - 1.7.5 is configured to use the embedded ActiveMQ broker, and the broker config is misconfigured, a JMX port is opened on TCP port 1099, which does not include authentication. CVE-2020-11969 previously addressed the creatio...

CVE-2020-13931

CVE-2020-13931 : Apache TomEE with embedded ActiveMQ broker and a misconfigured broker config can open a JMX port (TCP 1099) without authentication, for TomEE versions 8.0.0-M1–8.0.3, 7.1.0–7.1.3, 7.0.0-M1–7.0.8, and 1.0.0–1.7.5. This edge case was not covered by the prior fix for CVE-2020-11969,...

CVE-2020-13931

If Apache TomEE 8.0.0-M1 - 8.0.3, 7.1.0 - 7.1.3, 7.0.0-M1 - 7.0.8, 1.0.0 - 1.7.5 is configured to use the embedded ActiveMQ broker, and the broker config is misconfigured, a JMX port is opened on TCP port 1099, which does not include authentication. CVE-2020-11969 previously addressed the creatio...

CVE-2019-13931

A vulnerability has been identified in XHQ All versions V6.0.0.2. The web interface could allow for an an attacker to craft the input in a form that is not expected, causing the application to behave in unexpected ways for legitimate users. Successful exploitation requires for an attacker to be...

CVE-2019-13931

Siemens XHQ Operations Intelligence (all versions

Siemens XHQ Operations Intelligence

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: XHQ Operations Intelligence Vulnerabilities: Cross-site Request Forgery, Improper Neutralization of Script-Related HTML Tags in a Web Page, Improper Input Validation 2. RISK...

CVE-2017-13931

CVE-2017-13931 is rejected/not used per the Initial Description.

CVE-2017-13931

...