Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 14 hours ago7 views

CVE-2026-57898

In Eclipse BaSyx Java Server SDK versions 2.0.0-milestone-05 to 2.0.0-milestone-12, deployments using the MongoDB backend are vulnerable to an unauthenticated arbitrary file write through the AAS thumbnail API. The AAS thumbnail upload path accepted a client-controlled fileName request parameter...

9CVSS6.3AI score
Exploits0References2Affected Software1
CVE
CVE
added 14 hours ago11 views

CVE-2026-57898

Eclipse BaSyx Java Server SDK (2.0.0-milestone-05 to 2.0.0-milestone-12) with MongoDB backend is vulnerable to unauthenticated arbitrary file write via the AAS thumbnail API. The upload path accepts a client-controlled fileName, which is used as both a repository key and, during retrieval, as a l...

9CVSS6.3AI score
Exploits0References1
Cvelist
Cvelist
added 14 hours ago8 views

CVE-2026-57898

In Eclipse BaSyx Java Server SDK versions 2.0.0-milestone-05 to 2.0.0-milestone-12, deployments using the MongoDB backend are vulnerable to an unauthenticated arbitrary file write through the AAS thumbnail API. The AAS thumbnail upload path accepted a client-controlled fileName request parameter...

9CVSS
Exploits0References1
EUVD
EUVD
added 14 hours ago5 views

EUVD-2026-43635

In Eclipse BaSyx Java Server SDK versions 2.0.0-milestone-05 to 2.0.0-milestone-12, deployments using the MongoDB backend are vulnerable to an unauthenticated arbitrary file write through the AAS thumbnail API. The AAS thumbnail upload path accepted a client-controlled fileName request parameter...

9CVSS6.3AI score
Exploits0References1
Rows per page
Query Builder