CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

RedhatCVE•added 2025/05/23 4:19 a.m.•6 views

CVE-2023-42405

SQL injection vulnerability in FIT2CLOUD RackShift v1.7.1 allows attackers to execute arbitrary code via the sort parameter to taskService.list, bareMetalService.list, and switchService.list...

9.8CVSS8.6AI score0.00976EPSS

Exploits1

NVD•added 2023/09/14 11:15 p.m.•13 views

CVE-2023-42405

SQL injection vulnerability in FIT2CLOUD RackShift v1.7.1 allows attackers to execute arbitrary code via the sort parameter to taskService.list, bareMetalService.list, and switchService.list...

9.8CVSS9.9AI score0.00976EPSS

Exploits1References1

OSV•added 2023/09/14 11:15 p.m.•26 views

CVE-2023-42405

SQL injection vulnerability in FIT2CLOUD RackShift v1.7.1 allows attackers to execute arbitrary code via the sort parameter to taskService.list, bareMetalService.list, and switchService.list...

9.8CVSS8.9AI score

Exploits0References1

Prion•added 2023/09/14 11:15 p.m.•17 views

Sql injection

SQL injection vulnerability in FIT2CLOUD RackShift v1.7.1 allows attackers to execute arbitrary code via the sort parameter to taskService.list, bareMetalService.list, and switchService.list...

7.5CVSS9.8AI score0.00976EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/09/14 12:0 a.m.•15 views

CVE-2023-42405

SQL injection vulnerability in FIT2CLOUD RackShift v1.7.1 allows attackers to execute arbitrary code via the sort parameter to taskService.list, bareMetalService.list, and switchService.list...

8.6AI score0.00976EPSS

Exploits1References1

Cvelist•added 2023/09/14 12:0 a.m.•17 views

CVE-2023-42405

SQL injection vulnerability in FIT2CLOUD RackShift v1.7.1 allows attackers to execute arbitrary code via the sort parameter to taskService.list, bareMetalService.list, and switchService.list...

10AI score0.00976EPSS

Exploits1References1

CVE•added 2023/09/14 12:0 a.m.•39 views

CVE-2023-42405

The CVE-2023-42405 issue affects FIT2CLOUD RackShift v1.7.1. It is a SQL injection vulnerability exposed via the sort parameter in the API endpoints taskService.list(), bareMetalService.list(), and switchService.list(), potentially allowing an attacker to execute arbitrary code. According to PT-S...

9.8CVSS9.8AI score0.00976EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2023/09/14 12:0 a.m.•3 views

PT-2023-28330 · Fit2Cloud · Fit2Cloud Rackshift

Name of the Vulnerable Software and Affected Versions: FIT2CLOUD RackShift version 1.7.1 Description: The issue allows attackers to execute arbitrary code via the sort parameter to taskService.list, bareMetalService.list, and switchService.list API endpoints. This enables attackers to potentially...

9.8CVSS9.6AI score0.00976EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by