Lucene search
+L

16 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:26 a.m.6 views

CVE-2024-42676

File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component...

8.8CVSS8AI score0.01073EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:13 a.m.7 views

CVE-2024-42677

An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component...

5.5CVSS5.2AI score0.0027EPSS
Exploits1References1
OSV
OSV
added 2024/08/15 2:15 p.m.2 views

CVE-2024-42676

File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component...

8.8CVSS6.1AI score0.01073EPSS
Exploits1References2
NVD
NVD
added 2024/08/15 2:15 p.m.17 views

CVE-2024-42676

File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component...

8.8CVSS0.01073EPSS
Exploits1References2
NVD
NVD
added 2024/08/15 2:15 p.m.16 views

CVE-2024-42677

An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component...

5.5CVSS0.0027EPSS
Exploits1References2
OSV
OSV
added 2024/08/15 2:15 p.m.4 views

CVE-2024-42677

An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component...

5.5CVSS5.8AI score0.0027EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/08/15 12:0 a.m.16 views

CVE-2024-42676

File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component...

7.9AI score0.01073EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/08/15 12:0 a.m.10 views

CVE-2024-42677

An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component...

6.1AI score0.0027EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/08/15 12:0 a.m.4 views

Huizhi enterprise resource management system 安全漏洞

Huizhi enterprise resource management system is an enterprise resource planning ERP system from Shenzhen Huizhi Software Development Co. A security vulnerability exists in Huizhi enterprise resource management system version v.1.0, which originates from the...

8.8CVSS7.8AI score0.01073EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/08/15 12:0 a.m.7 views

PT-2024-30101 · Huizhi · Huizhi

Name of the Vulnerable Software and Affected Versions: Huizhi enterprise resource management system versions 1.0 and before Description: The issue allows a remote attacker to execute arbitrary code via the "/nssys/common/Upload.aspx?Action=DNPageAjaxPostBack" component. This is a File Upload...

8.8CVSS8AI score0.01073EPSS
Exploits1References10
Cvelist
Cvelist
added 2024/08/15 12:0 a.m.20 views

CVE-2024-42676

File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component...

0.01073EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/08/15 12:0 a.m.4 views

Huizhi enterprise resource management system 安全漏洞

Huizhi enterprise resource management system is an enterprise resource planning ERP system from Shenzhen Huizhi Software Development Co. A security vulnerability exists in Huizhi enterprise resource management system version v.1.0, which originates from the /nssys/common/filehandle.aspx component...

5.5CVSS6.2AI score0.0027EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/08/15 12:0 a.m.20 views

CVE-2024-42677

An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component...

0.0027EPSS
Exploits1References2
CVE
CVE
added 2024/08/15 12:0 a.m.49 views

CVE-2024-42676

Huizhi enterprise resource management system v1.0 and earlier is affected by a File Upload vulnerability in the /nssys/common/Upload.aspx?Action=DNPageAjaxPostBack endpoint that allows remote code execution. The issue arises from the file upload functionality, enabling an attacker to run arbitrar...

8.8CVSS7.9AI score0.01073EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2024/08/15 12:0 a.m.65 views

CVE-2024-42677

CVE-2024-42677 affects Huizhi enterprise resource management system v1.0 and earlier. The issue is a local information-disclosure vulnerability in the /nssys/common/filehandle.aspx component, enabling a local attacker to obtain sensitive data. The Red Hat/NVD/CVE entries corroborate a local-attac...

5.5CVSS6.2AI score0.0027EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/15 12:0 a.m.9 views

PT-2024-30102 · Huizhi · Huizhi

Name of the Vulnerable Software and Affected Versions: Huizhi enterprise resource management system versions 1.0 and earlier Description: The issue allows a local attacker to obtain sensitive information via the "/nssys/common/filehandle.aspx" component. A local attacker can exploit this to gain...

5.5CVSS6.4AI score0.0027EPSS
Exploits1References7
Rows per page
Query Builder