Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:18 a.m.14 views

CVE-2022-45771

An issue in the /api/audits component of Pwndoc v0.5.3 allows attackers to escalate privileges and execute arbitrary code via uploading a crafted audit file...

8.8CVSS7.8AI score0.01751EPSS
Exploits3References1
NVD
NVD
added 2022/12/05 8:15 p.m.16 views

CVE-2022-45771

An issue in the /api/audits component of Pwndoc v0.5.3 allows attackers to escalate privileges and execute arbitrary code via uploading a crafted audit file...

8.8CVSS0.01751EPSS
Exploits3References2
Prion
Prion
added 2022/12/05 8:15 p.m.20 views

Design/Logic Flaw

An issue in the /api/audits component of Pwndoc v0.5.3 allows attackers to escalate privileges and execute arbitrary code via uploading a crafted audit file...

6.5CVSS8.9AI score0.01751EPSS
Exploits3References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/12/05 12:0 a.m.10 views

PT-2022-27641 · Pwndoc · Pwndoc

Name of the Vulnerable Software and Affected Versions: Pwndoc version 0.5.3 Description: An issue in the "/api/audits" component allows attackers to escalate privileges and execute arbitrary code via uploading a crafted audit file. Recommendations: For Pwndoc version 0.5.3, consider disabling the...

8.8CVSS9.2AI score0.01751EPSS
Exploits3References11
OSV
OSV
added 2022/06/21 3:15 p.m.2 views

CVE-2022-32974

An authenticated attacker could read arbitrary files from the underlying operating system of the scanner using a custom crafted compliance audit file without providing any valid SSH credentials...

6.5CVSS7.1AI score0.00704EPSS
Exploits0References1
Rows per page
Query Builder