Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-15078

Malware in sbrugna...

7.2CVSS7AI score0.01095EPSS
Exploits0References5
NVD
NVD
added 2022/09/05 5:15 p.m.24 views

CVE-2021-28398

A privileged attacker in GeoNetwork before 3.12.0 and 4.x before 4.0.4 can use the directory harvester before-script to execute arbitrary OS commands remotely on the hosting infrastructure. A User Administrator or Administrator account is required to perform this. This occurs in the runBeforeScri...

7.2CVSS0.01095EPSS
Exploits0References4
OSV
OSV
added 2022/09/05 5:15 p.m.16 views

CVE-2021-28398

A privileged attacker in GeoNetwork before 3.12.0 and 4.x before 4.0.4 can use the directory harvester before-script to execute arbitrary OS commands remotely on the hosting infrastructure. A User Administrator or Administrator account is required to perform this. This occurs in the runBeforeScri...

7.2CVSS7.6AI score
Exploits0References4
Prion
Prion
added 2022/09/05 5:15 p.m.23 views

Command injection

A privileged attacker in GeoNetwork before 3.12.0 and 4.x before 4.0.4 can use the directory harvester before-script to execute arbitrary OS commands remotely on the hosting infrastructure. A User Administrator or Administrator account is required to perform this. This occurs in the runBeforeScri...

5.8CVSS7.2AI score0.01095EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2022/09/05 4:9 p.m.67 views

CVE-2021-28398

GeoNetwork vulnerable in versions before 3.12.0 and 4.x before 4.0.4 due to the directory harvester before-script executing arbitrary OS commands via LocalFilesystemHarvester.runBeforeScript. Earliest affected: 3.4.0. Impact: remote command execution with high privileges; requires User Administra...

7.2CVSS7.2AI score0.01095EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder