CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Уязвимость системы обработки обращений клиентов edna Chat Center связана с некорректной обработкой исключительных состояний. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, определить подлинные идентификаторы пользователей...

4CVSS7.2AI score

Exploits0References1

RedhatCVE•added 2025/02/05 1:47 p.m.•11 views

CVE-2020-13500

SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter ClassName in CHaD.asmx is vulnerable to unauthenticated SQL...

9.8CVSS7.8AI score0.00282EPSS

Exploits1

RedhatCVE•added 2025/02/05 1:45 p.m.•9 views

CVE-2020-13499

An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter InstancePath in CHaD.asmx is vulnerable to unauthenticate...

9.8CVSS7.8AI score0.00282EPSS

Exploits1References4

RedhatCVE•added 2025/02/05 1:45 p.m.•11 views

CVE-2020-13501

An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter InstanceName in CHaD.asmx is vulnerable to unauthenticate...

9.8CVSS7.8AI score0.00282EPSS

Exploits1

Positive Technologies•added 2024/08/01 12:0 a.m.•1 views

PT-2024-8394 · Unknown · Edna Chat Center

Name of the Vulnerable Software and Affected Versions: edna Chat Center affected versions not specified Description: The issue is related to improper access control in the edna Chat Center customer service system. Exploitation of this issue may allow a remote attacker to gain unauthorized access ...

5.4CVSS7.3AI score

Exploits0References1

Check Point Advisories•added 2020/10/11 12:0 a.m.•3 views

Aveva eDNA Enterprise SQL Injection (CVE-2020-13499; CVE-2020-13500; CVE-2020-13501)

An SQL injection vulnerability exists in Aveva eDNA Enterprise. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS5.7AI score0.00282EPSS

Exploits3

OSV•added 2020/09/24 3:15 p.m.•2 views

CVE-2020-13499

9.8CVSS5.8AI score0.00282EPSS

Exploits1References2

NVD•added 2020/09/24 3:15 p.m.•11 views

CVE-2020-13501

An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter InstanceName in CHaD.asmx is vulnerable to unauthenticate...

9.8CVSS0.00282EPSS

Exploits1References2

OSV•added 2020/09/24 3:15 p.m.•2 views

CVE-2020-13500

9.8CVSS7.3AI score

Exploits0References2

OSV•added 2020/09/24 3:15 p.m.•1 views

CVE-2020-13505

Parameter psClass in ednareporting.asmx is vulnerable to unauthenticated SQL injection attacks. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. An attacker can send unauthenticated HTTP requests to trigger this vulnerability...

9.8CVSS5.8AI score

Exploits0References1

NVD•added 2020/09/24 3:15 p.m.•13 views

CVE-2020-13499

9.8CVSS0.00282EPSS

Exploits1References2

NVD•added 2020/09/24 3:15 p.m.•9 views

CVE-2020-13500

9.8CVSS0.00282EPSS

Exploits1References2

OSV•added 2020/09/24 3:15 p.m.•2 views

CVE-2020-13501

An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter InstanceName in CHaD.asmx is vulnerable to unauthenticate...

9.8CVSS7.3AI score

Exploits0References2

Prion•added 2020/09/24 3:15 p.m.•16 views

Sql injection

7.5CVSS9.7AI score0.00282EPSS

Exploits1References2Affected Software1

Prion•added 2020/09/24 3:15 p.m.•14 views

Sql injection

7.5CVSS9.7AI score0.00282EPSS

Exploits1References2Affected Software1

Prion•added 2020/09/24 3:15 p.m.•10 views

Sql injection

An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter InstanceName in CHaD.asmx is vulnerable to unauthenticate...

7.5CVSS9.7AI score0.00282EPSS

Exploits1References2Affected Software1

Cvelist•added 2020/09/24 2:39 p.m.•13 views

CVE-2020-13501

An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter InstanceName in CHaD.asmx is vulnerable to unauthenticate...

9.8CVSS9.8AI score0.00282EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by