CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/05/23 5:4 a.m.•4 views

CVE-2023-1731

In Meinbergs LTOS versions prior to V7.06.013, the configuration file upload function would not correctly validate the input, which would allow an remote authenticated attacker with high privileges to execute arbitrary commands...

7.2CVSS7.4AI score0.00536EPSS

Tenable Nessus•added 2024/05/02 12:0 a.m.•18 views

Meinberg LANTIME Improper Filename Validation of the Upload Function (CVE-2023-1731)

OSV•added 2024/02/04 9:15 p.m.•1 views

Exploits0References2

CVE-2021-46903

An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. An admin can delete required user accounts in violation of expected access control...

6.5CVSS5.8AI score0.00098EPSS

NVD•added 2024/02/04 9:15 p.m.•6 views

CVE-2021-46902

An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. Path validation is mishandled, and thus an admin can read or delete files in violation of expected access controls...

7.2CVSS7AI score0.00379EPSS

NVD•added 2024/02/04 9:15 p.m.•7 views

CVE-2021-46903

6.5CVSS6.5AI score0.00098EPSS

Prion•added 2024/02/04 9:15 p.m.•16 views

Input validation

5.8CVSS7.1AI score0.00379EPSS

Prion•added 2024/02/04 9:15 p.m.•17 views

Improper access control

4.7CVSS7.2AI score0.00098EPSS

Cvelist•added 2024/02/04 12:0 a.m.•10 views

CVE-2021-46903

6.7AI score0.00098EPSS

CVE•added 2024/02/04 12:0 a.m.•38 views

CVE-2021-46902

The CVE-2021-46902 entry applies to Meinberg LANTIME-Firmware LTOS-Web-Interface. The vulnerability concerns path validation in LTOS-Web-Interface, allowing an administrator to read or delete files in violation of access controls. Affected versions are Meinberg LANTIME-Firmware before 6.24.029 MB...

7.2CVSS6.9AI score0.00379EPSS

Cvelist•added 2024/02/04 12:0 a.m.•10 views

CVE-2021-46902

7.2AI score0.00379EPSS

Vulnrichment•added 2024/02/04 12:0 a.m.•6 views

CVE-2021-46903

6.9AI score0.00098EPSS

Vulnrichment•added 2024/02/04 12:0 a.m.•7 views

CVE-2021-46902

6.9AI score0.00379EPSS

OSV•added 2023/04/24 2:15 p.m.•1 views

CVE-2023-1731

7.2CVSS7.3AI score0.00536EPSS

Prion•added 2023/04/24 2:15 p.m.•5 views

Design/Logic Flaw

5.8CVSS7.1AI score0.00536EPSS

CVE•added 2023/04/24 1:36 p.m.•36 views

CVE-2023-1731

The CVE-2023-1731 issue affects Meinberg LTOS prior to v7.06.013, where the configuration file upload function does not properly validate input. This allows a remote authenticated attacker with high privileges to execute arbitrary commands (remote code execution). Affected product is Meinberg LTO...

Vulnrichment•added 2023/04/24 1:36 p.m.•4 views

CVE-2023-1731 Improper Input Validation in Meinberg LTOS

Cvelist•added 2023/04/24 1:36 p.m.•11 views

CVE-2023-1731 Improper Input Validation in Meinberg LTOS

7.2CVSS7.3AI score0.00536EPSS

Positive Technologies•added 2023/04/24 12:0 a.m.•0 views

PT-2023-17197 · Meinberg · Meinbergs Ltos

Name of the Vulnerable Software and Affected Versions: Meinbergs LTOS versions prior to V7.06.013 Description: The configuration file upload function in Meinbergs LTOS does not correctly validate input, allowing a remote authenticated attacker with high privileges to execute arbitrary commands...