9 matches found
EUVD-2002-2320
Malware in sbrugna...
EUVD-2021-20346
Malware in sbrugna...
CVE-2025-32959 CUBA Vulnerable to Denial of Service (DoS) in the File Storage
CUBA Platform is a high level framework for enterprise applications development. Prior to version 7.2.23, the local file storage implementation does not restrict the size of uploaded files. An attacker could exploit this by uploading excessively large files, potentially causing the server to run...
CVE-2025-32959 CUBA Vulnerable to Denial of Service (DoS) in the File Storage
CUBA Platform is a high level framework for enterprise applications development. Prior to version 7.2.23, the local file storage implementation does not restrict the size of uploaded files. An attacker could exploit this by uploading excessively large files, potentially causing the server to run...
CVE-2025-32959
CVE-2025-32959 affects CUBA Platform: before 7.2.23 the local file storage does not restrict uploaded file sizes, allowing an attacker to exhaust server disk space and cause HTTP 500 DoS. The issue is fixed in 7.2.23; a workaround is documented in Jmix files vulnerability guidance. Applied mitiga...
CVE-2025-2121 Thinkware Car Dashcam F800 Pro File Storage access control
A vulnerability classified as critical has been found in Thinkware Car Dashcam F800 Pro up to 20250226. Affected is an unknown function of the component File Storage. The manipulation leads to improper access controls. The attack can only be done within the local network. The exploit has been...
CVE-2025-2121 Thinkware Car Dashcam F800 Pro File Storage access control
A vulnerability classified as critical has been found in Thinkware Car Dashcam F800 Pro up to 20250226. Affected is an unknown function of the component File Storage. The manipulation leads to improper access controls. The attack can only be done within the local network. The exploit has been...
Code injection
The Statutory Reporting application has a vulnerable file storage location, potentially enabling low privileged attacker to read server files with minimal impact on confidentiality...
CVE-2021-37196
A vulnerability has been identified in COMOS V10.2 All versions only if web components are used, COMOS V10.3 All versions = V10.3.3.3 only if web components are used, COMOS V10.4 All versions V10.4.1 only if web components are used. The COMOS Web component of COMOS unpacks specially crafted archi...