Lucene search
K

6 matches found

Nuclei
Nuclei
added 5 days ago14 views

KeySight RF - smsRestoreDatabaseZip UNC path to Remote Code Execution

The com.keysight.tentacle.config.ResourceManager.smsRestoreDatabaseZip method is used to restore the HSQLDB database used in SMS. It takes the path of the zipped database file as the single parameter. An unauthenticated, remote attacker can specify an UNC path for the database file i.e., \\sms,...

9.8CVSS7.2AI score0.53389EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:57 a.m.6 views

CVE-2022-38129

A path traversal vulnerability exists in the com.keysight.tentacle.licensing.LicenseManager.addLicenseFile method in the Keysight Sensor Management Server SMS. This allows an unauthenticated remote attacker to upload arbitrary files to the SMS host...

9.8CVSS7.3AI score0.1838EPSS
Exploits1References1
NVD
NVD
added 2022/08/10 8:16 p.m.22 views

CVE-2022-38129

A path traversal vulnerability exists in the com.keysight.tentacle.licensing.LicenseManager.addLicenseFile method in the Keysight Sensor Management Server SMS. This allows an unauthenticated remote attacker to upload arbitrary files to the SMS host...

9.8CVSS0.1838EPSS
Exploits1References1
Prion
Prion
added 2022/08/10 8:16 p.m.15 views

Path traversal

A path traversal vulnerability exists in the com.keysight.tentacle.licensing.LicenseManager.addLicenseFile method in the Keysight Sensor Management Server SMS. This allows an unauthenticated remote attacker to upload arbitrary files to the SMS host...

7.5CVSS9.4AI score0.1838EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/08/10 4:4 p.m.2 views

CVE-2022-38129

A path traversal vulnerability exists in the com.keysight.tentacle.licensing.LicenseManager.addLicenseFile method in the Keysight Sensor Management Server SMS. This allows an unauthenticated remote attacker to upload arbitrary files to the SMS host...

7.5AI score0.1838EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/10 4:4 p.m.30 views

CVE-2022-38129

A path traversal vulnerability exists in the com.keysight.tentacle.licensing.LicenseManager.addLicenseFile method in the Keysight Sensor Management Server SMS. This allows an unauthenticated remote attacker to upload arbitrary files to the SMS host...

9.8AI score0.1838EPSS
Exploits1References1
Rows per page
Query Builder