Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:44 a.m.6 views

CVE-2024-37728

Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7.18.23.0 and v8.6.1.0 allows a remote attacker to obtain sensitive information via the "Pic/Indexes" interface...

7.5CVSS7.3AI score0.01852EPSS
Exploits0References1
NVD
NVD
added 2024/09/10 2:15 p.m.23 views

CVE-2024-37728

Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7.18.23.0 and v8.6.1.0 allows a remote attacker to obtain sensitive information via the "Pic/Indexes" interface...

7.5CVSS0.01852EPSS
Exploits0References2
CVE
CVE
added 2024/09/10 12:0 a.m.48 views

CVE-2024-37728

OfficeWeb365 (Xi’an Daxi Information Technology Co., Ltd) v7.18.23.0 and v8.6.1.0 suffer an Arbitrary File Read via the Pic/Indexes interface. This allows unauthenticated remote attackers to read arbitrary files from the server. Root cause indicators point to a mis-implemented file-access endpoin...

7.5CVSS6.5AI score0.01852EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/09/10 12:0 a.m.261 views

CVE-2024-37728

Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7.18.23.0 and v8.6.1.0 allows a remote attacker to obtain sensitive information via the "Pic/Indexes" interface...

0.01852EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/10 12:0 a.m.16 views

CVE-2024-37728

Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7.18.23.0 and v8.6.1.0 allows a remote attacker to obtain sensitive information via the "Pic/Indexes" interface...

6.7AI score0.01852EPSS
Exploits0References4
Rows per page
Query Builder