26 matches found
EUVD-2012-5769
Malware in sbrugna...
EUVD-2017-17742
Malware in sbrugna...
CVE-2024-38461
irodsServerMonPerf in iRODS before 4.3.2 attempts to proceed with use of a path even if it is not a directory...
CVE-2024-38462
iRODS before 4.3.2 provides an msiSendMail function with a problematic dependency on the mail binary, such as in the mailMS.cppL94-L106 reference...
CVE-2024-38461
irodsServerMonPerf in iRODS before 4.3.2 attempts to proceed with use of a path even if it is not a directory...
CVE-2024-38462
iRODS before 4.3.2 provides an msiSendMail function with a problematic dependency on the mail binary, such as in the mailMS.cppL94-L106 reference...
CVE-2024-38461
irodsServerMonPerf in iRODS before 4.3.2 attempts to proceed with use of a path even if it is not a directory...
CVE-2024-38462
iRODS before 4.3.2 provides an msiSendMail function with a problematic dependency on the mail binary, such as in the mailMS.cppL94-L106 reference...
CVE-2024-38462
iRODS before 4.3.2 provides an msiSendMail function with a problematic dependency on the mail binary, such as in the mailMS.cppL94-L106 reference...
CVE-2024-38461
irodsServerMonPerf in iRODS before 4.3.2 attempts to proceed with use of a path even if it is not a directory...
PT-2024-28018 · Irods · Irods
Name of the Vulnerable Software and Affected Versions: iRODS versions prior to 4.3.2 Description: The issue concerns a problematic dependency on the mail binary in the msiSendMail function. This function is referenced in mailMS.cppL94-L106. Recommendations: For versions prior to 4.3.2, update to...
CVE-2024-38462
iRODS before 4.3.2 contains a vulnerability in msiSendMail with a problematic dependency on the mail binary (mailMS.cpp#L94-L106). Affected: versions prior to 4.3.2. Remediation: upgrade to 4.3.2 or later. No exploitation details are provided in the documents.
PT-2024-28017 · Irods · Irods
Name of the Vulnerable Software and Affected Versions: iRODS versions prior to 4.3.2 Description: The issue arises when irodsServerMonPerf attempts to use a path even if it is not a directory. This can lead to unintended behavior. Recommendations: For versions prior to 4.3.2, update to version...
CVE-2024-38461
Summary: CVE-2024-38461 affects iRODS before 4.3.2, specifically the irodsServerMonPerf component. The issue arises when the code attempts to proceed with a path that is not a directory, potentially causing unintended behavior. Affected software/versions: iRODS prior to 4.3.2. Root cause (as stat...
CVE-2024-38461
irodsServerMonPerf in iRODS before 4.3.2 attempts to proceed with use of a path even if it is not a directory...
CVE-2024-38462
iRODS before 4.3.2 provides an msiSendMail function with a problematic dependency on the mail binary, such as in the mailMS.cppL94-L106 reference...
iRODS Remote Command Execution Vulnerability
iRODS Integrated Rule-Oriented Data System is a set of open-source distributed data management software developed and maintained by the American iRODS consortium. The software provides functions such as virtualized data storage, digitized data extraction from real-time sensor networks, and data...
CVE-2017-8799
Untrusted input execution via igetwild in all iRODS versions before 4.1.11 and 4.2.1 allows other iRODS users potentially anonymous to execute remote shell commands via iRODS virtual pathnames. To exploit this vulnerability, a virtual iRODS pathname that includes a semicolon would be retrieved vi...
Input validation
Untrusted input execution via igetwild in all iRODS versions before 4.1.11 and 4.2.1 allows other iRODS users potentially anonymous to execute remote shell commands via iRODS virtual pathnames. To exploit this vulnerability, a virtual iRODS pathname that includes a semicolon would be retrieved vi...
CVE-2017-8799
Untrusted input execution via igetwild in all iRODS versions before 4.1.11 and 4.2.1 allows other iRODS users potentially anonymous to execute remote shell commands via iRODS virtual pathnames. To exploit this vulnerability, a virtual iRODS pathname that includes a semicolon would be retrieved vi...