286 matches found
CVE-2020-29059
An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices...
CVE-2020-29058
An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices...
CVE-2024-31850
A path traversal vulnerability exists in the Java version of CData Arc 23.4.8839 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain access to sensitive information and perform limited actions...
CVE-2024-31849
A path traversal vulnerability exists in the Java version of CData Connect 23.4.8846 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain complete administrative access to the application...
CVE-2024-31851
A path traversal vulnerability exists in the Java version of CData Sync 23.4.8843 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain access to sensitive information and perform limited actions...
CVE-2024-31848
A path traversal vulnerability exists in the Java version of CData API Server 23.4.8844 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain complete administrative access to the application...
MAL-2024-4439 Malicious code in CData.Snowflake.EntityFramework.Net (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in CData.Snowflake.EntityFramework.Net (NuGet)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-4438 Malicious code in CData.Snowflake.API (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in CData.Salesforce.Net.Framework (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in CData.Snowflake.API (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in CData.NetSuite.Net.Framework (NuGet)
--- -= Per source details. Do not edit below this line.=-...
Exploit for CVE-2024-31848
Exploiting CData within Jetty servers - CVE-2024-31848/49/50/5...
The vulnerability in the embedded Jetty server of the CData Sync integration and replication tool allows a perpetrator to gain unauthorized access to protected information and perform arbitrary actions within the system.
The vulnerability in the embedded Jetty server of the CData Sync integration and replication tool is related to errors in processing the relative path to the directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected...
The vulnerability in the embedded Jetty server of the CData Arc (ArcESB) business process automation platform allows a perpetrator to gain unauthorized access to protected information and perform arbitrary actions within the system.
The vulnerability of the embedded Jetty server in the CData Arc ArcESB business process automation platform is related to errors in processing the relative path to the catalog. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected...
The vulnerability in the embedded Jetty server of the CData Connect integration, analysis, and data management platform allows attackers to escalate their privileges.
The vulnerability of the embedded Jetty server in the CData Connect integration, analysis, and data management platform is related to errors in processing the relative path to the catalog. Exploiting this vulnerability can allow a malicious actor to increase their privileges by sending specially...
CVE-2024-31851
A path traversal vulnerability exists in the Java version of CData Sync 23.4.8843 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain access to sensitive information and perform limited actions...
CVE-2024-31849
A path traversal vulnerability exists in the Java version of CData Connect 23.4.8846 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain complete administrative access to the application...
CVE-2024-31848
A path traversal vulnerability exists in the Java version of CData API Server 23.4.8844 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain complete administrative access to the application...
CVE-2024-31850
A path traversal vulnerability exists in the Java version of CData Arc 23.4.8839 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain access to sensitive information and perform limited actions...