29 matches found
CVE-2022-4779 authentication bypass in elvexys StreamX using StreamView HTML component with public web server feature
StreamX applications from versions 6.02.01 to 6.04.34 are affected by a logic bug that allows to bypass the implemented authentication scheme. StreamX applications using StreamView HTML component with the public web server feature activated are affected...
CVE-2022-4779 authentication bypass in elvexys StreamX using StreamView HTML component with public web server feature
StreamX applications from versions 6.02.01 to 6.04.34 are affected by a logic bug that allows to bypass the implemented authentication scheme. StreamX applications using StreamView HTML component with the public web server feature activated are affected...
CVE-2022-4778 path traversal in elvexys StreamX using StreamView HTML component with public web server feature
StreamX applications from versions 6.02.01 to 6.04.34 are affected by a path traversal vulnerability that allows authenticated users to get unauthorized access to files on the server's filesystem. StreamX applications using StreamView HTML component with the public web server feature activated ar...
CVE-2022-4778
The CVE-2022-4778 entry concerns StreamX applications, specifically versions 6.02.01–6.04.34, affected by a path traversal vulnerability in the StreamView HTML component when the public web server feature is enabled. This allows authenticated users to access files on the server filesystem. Connec...
CVE-2022-4778 path traversal in elvexys StreamX using StreamView HTML component with public web server feature
StreamX applications from versions 6.02.01 to 6.04.34 are affected by a path traversal vulnerability that allows authenticated users to get unauthorized access to files on the server's filesystem. StreamX applications using StreamView HTML component with the public web server feature activated ar...
PT-2022-28086 · Xstream · Stream
Name of the Vulnerable Software and Affected Versions: StreamX versions 6.02.01 through 6.04.34 Description: The issue is related to a logic bug that allows bypassing the implemented authentication scheme. This affects StreamX applications using the StreamView HTML component with the public web...
Elvexys ISOS 信任管理问题漏洞
Elvexys ISOS is an application from Elvexys, Inc. A security vulnerability exists in Elvexys ISOS versions 1.81 through 2.00, which stems from hard-coded credentials containing the embedded StreamX installer...
PT-2022-28085 · Xstream · Stream
Name of the Vulnerable Software and Affected Versions: StreamX versions 6.02.01 through 6.04.34 Description: The issue allows authenticated users to gain unauthorized access to files on the server's filesystem due to a path traversal vulnerability. This affects StreamX applications that use the...
PT-2022-28087 · Isos · Isos
Name of the Vulnerable Software and Affected Versions: ISOS firmwares versions 1.81 through 2.00 Description: The issue concerns hardcoded credentials in the embedded StreamX installer within ISOS firmwares. These credentials are not mandatory for integrators to change, posing a security risk...