Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:50 a.m.9 views

CVE-2019-7669

Prima Systems FlexAir, Versions 2.3.38 and prior. Improper validation of file extensions when uploading files could allow a remote authenticated attacker to upload and execute malicious applications within the application’s web root with root privileges...

9CVSS7AI score0.31419EPSS
Exploits2References1
Packet Storm
Packet Storm
added 2019/11/12 12:0 a.m.112 views

FlexAir Access Control 2.3.38 Command Injection

!/bin/bash Command injection with root privileges in FlexAir Access Control Prima Systems Firmware version: $OUTPUTFILE" Command injection payload. Be careful with single quotes! PAYLOAD="" Perform exploit echo "Executing: $CMD" curl --silent --output /dev/null -X POST -d "$PAYLOAD"...

10CVSS0.4AI score0.31419EPSS
Exploits2
NVD
NVD
added 2019/07/01 7:15 p.m.20 views

CVE-2019-7669

Prima Systems FlexAir, Versions 2.3.38 and prior. Improper validation of file extensions when uploading files could allow a remote authenticated attacker to upload and execute malicious applications within the application’s web root with root privileges...

9CVSS8.9AI score0.31419EPSS
Exploits2References4
CVE
CVE
added 2019/07/01 6:18 p.m.73 views

CVE-2019-7669

CVE-2019-7669 affects Prima Systems FlexAir (versions 2.3.38 and earlier). The vulnerability is due to improper validation of file extensions when uploading files, allowing a remote authenticated attacker to upload and execute malicious applications within the application’s web root with root pri...

9CVSS8.4AI score0.31419EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder