Lucene search
K

5 matches found

OSV
OSV
added 2022/07/12 10:15 a.m.2 views

CVE-2022-34464

A vulnerability has been identified in SICAM GridEdge Classic All versions V2.7.3. The affected application uses an improperly protected file to import SSH keys. This could allow attackers with access to the filesystem of the host on which SICAM GridEdge runs to inject a custom SSH key to that fi...

5.3CVSS5.7AI score0.00372EPSS
Exploits0References2
OSV
OSV
added 2022/06/14 10:15 a.m.3 views

CVE-2022-30228

A vulnerability has been identified in SICAM GridEdge Classic All versions V2.6.6. The affected software does not apply cross-origin resource sharing CORS restrictions for critical operations. In case an attacker tricks a legitimate user into accessing a special resource a malicious request could...

8.6CVSS5.7AI score
Exploits0References2
OSV
OSV
added 2022/06/14 10:15 a.m.6 views

CVE-2022-30229

A vulnerability has been identified in SICAM GridEdge Classic All versions V2.6.6. The affected application does not require authenticated access for privileged functions. This could allow an unauthenticated attacker to change data of a user, such as credentials, in case that user's id is known...

8.6CVSS6AI score0.00712EPSS
Exploits0References2
OSV
OSV
added 2022/06/14 10:15 a.m.2 views

CVE-2022-30231

A vulnerability has been identified in SICAM GridEdge Classic All versions V2.6.6. The affected application discloses password hashes of other users upon request. This could allow an authenticated user to retrieve another user's password hash...

6.9CVSS5.7AI score0.00576EPSS
Exploits0References2
OSV
OSV
added 2022/06/14 10:15 a.m.5 views

CVE-2022-30230

A vulnerability has been identified in SICAM GridEdge Classic All versions V2.6.6. The affected application does not require authenticated access for privileged functions. This could allow an unauthenticated attacker to create a new user with administrative permissions...

9.3CVSS7.2AI score0.01027EPSS
Exploits0References2
Rows per page
Query Builder