Lucene search
K

860 matches found

RedhatCVE
RedhatCVE
added 2025/05/24 7:11 p.m.10 views

CVE-2024-13958

Stored Cross Site Scripting vulnerabilities exist in ASPECT if administrator creden-tials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

4.8CVSS6.6AI score0.00186EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 7:11 p.m.15 views

CVE-2024-13949

Large content vulnerabilities are present in ASPECT exposing a device to disk overutilization on a system if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

6.9CVSS7AI score0.00316EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/24 7:11 p.m.11 views

CVE-2024-13956

SSL Verification Bypass vulnerabilities exist in ASPECT if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

8.8CVSS7.2AI score0.00363EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 7:11 p.m.16 views

CVE-2024-13948

Windows permissions for ASPECT configuration toolsets are not fully secured allow-ing exposure of configuration informationThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7.3CVSS7AI score0.00132EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/24 7:11 p.m.13 views

CVE-2024-13954

Serialized configuration information may be disclosed during device commissioning while using ASPECT's configuration toolsetThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

6.5CVSS6.7AI score0.00185EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 7:11 p.m.17 views

CVE-2024-13955

2nd Order SQL injection vulnerabilities in ASPECT allow unintended access and manipulation of database repositories if administrator credentials become compromised.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

9.4CVSS8.2AI score0.00311EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 7:11 p.m.6 views

CVE-2024-13950

Log injection vulnerabilities in ASPECT provide attacker access to inject malicious browser scripts if administrator credentials become compromised.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

6.9CVSS7.3AI score0.00341EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 7:11 p.m.8 views

CVE-2024-13947

Device commissioning parameters in ASPECT may be modified by an external source if administrative credentials become compromisedThis issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7.1CVSS7AI score0.00318EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.12 views

CVE-2025-30169

File upload and execute vulnerabilities in ASPECT allow PHP script injection if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

6.7CVSS7.7AI score0.00297EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.13 views

CVE-2025-2409

File corruption vulnerabilities in ASPECT provide attackers access to overwrite sys-tem files if session administrator credentials become compromised This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

9.1CVSS7.3AI score0.00402EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.11 views

CVE-2025-30171

System File Deletion vulnerabilities in ASPECT provide attackers access to delete system files if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

9CVSS7.1AI score0.00274EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.10 views

CVE-2025-30173

File upload vulnerabilities are present in ASPECT if session administrator credentials become compromised This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

6.7CVSS7.2AI score0.00297EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.12 views

CVE-2025-30172

Remote Code Execution vulnerabilities are present in ASPECT if session administrator credentials become compromised This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

8.9CVSS7.8AI score0.00456EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.18 views

CVE-2025-30170

Exposure of file path, file size or file existence vulnerabilities in ASPECT provide attackers access to file system information if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through...

5.9CVSS6.9AI score0.00254EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.11 views

CVE-2025-2410

Port manipulation vulnerabilities in ASPECT provide attackers with the ability to con-trol TCP/IP port access if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

9.1CVSS7.1AI score0.00435EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.9 views

CVE-2024-13928

SQL injection vulnerabilities in ASPECT allow unintended access and manipulation of database repositories if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

7.5CVSS8.2AI score0.00317EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.12 views

CVE-2024-13931

Relative Path Traversal vulnerabilities in ASPECT allow access to file resources if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

7.5CVSS7.1AI score0.00354EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.12 views

CVE-2024-13946

DLL's are not digitally signed when loaded in ASPECT's configuration toolset exposing the application to binary planting during device commissioning.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

7.1CVSS6.9AI score0.00977EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.13 views

CVE-2024-13929

Servlet injection vulnerabilities in ASPECT allow remote code execution if session administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

7.5CVSS8.3AI score0.00582EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 6:13 p.m.24 views

CVE-2024-13930

An Unchecked Loop Condition in ASPECT provides an attacker the ability to maliciously consume system resources if session administrator credentials become compromised This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

5.9CVSS6.8AI score0.0032EPSS
Exploits0References1
Rows per page
Query Builder