Lucene search
K

6 matches found

OSV
OSV
added 2022/09/01 2:15 p.m.14 views

CVE-2022-37435

Apache ShenYu Admin has insecure permissions, which may allow low-privilege administrators to modify high-privilege administrator's passwords. This issue affects Apache ShenYu 2.4.2 and 2.4.3...

8.8CVSS8.7AI score
Exploits0References1
NVD
NVD
added 2022/09/01 2:15 p.m.29 views

CVE-2022-37435

Apache ShenYu Admin has insecure permissions, which may allow low-privilege administrators to modify high-privilege administrator's passwords. This issue affects Apache ShenYu 2.4.2 and 2.4.3...

8.8CVSS0.01109EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/09/01 2:15 p.m.2 views

CVE-2022-37435

Apache ShenYu Admin has insecure permissions, which may allow low-privilege administrators to modify high-privilege administrator's passwords. This issue affects Apache ShenYu 2.4.2 and 2.4.3...

8.8CVSS7.3AI score0.01109EPSS
Exploits0References2
CVE
CVE
added 2022/09/01 2:0 p.m.82 views

CVE-2022-37435

CVE-2022-37435 concerns Apache ShenYu Admin insecure permissions that may let a low-privilege administrator modify a high-privilege administrator’s password, enabling privilege escalation. Affected versions: ShenYu Admin 2.4.2 and 2.4.3. Root cause, per multiple sources, is improper/unsafe permis...

8.8CVSS8.6AI score0.01109EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/09/01 12:0 a.m.4 views

PT-2022-23995 · Apache · Apache Shenyu

Name of the Vulnerable Software and Affected Versions: Apache ShenYu versions 2.4.2 through 2.4.3 Description: The issue is related to insecure permissions in Apache ShenYu Admin, which may allow low-privilege administrators to modify high-privilege administrator's passwords. Recommendations: For...

8.8CVSS8.6AI score0.01109EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2022/03/30 12:0 a.m.4 views

PT-2022-12294

Name of the Vulnerable Software and Affected Versions MEPSAN's USC+ versions prior to 3.0 Description A weakness in the login function of the affected software allows attackers to generate high-privileged account passwords. Recommendations For versions prior to 3.0, update to version 3.0 or later...

9.8CVSS7.1AI score0.0075EPSS
Exploits0References7
Rows per page
Query Builder