EUVD-2020-4811

Malware in sbrugna...

s::can moni::tools path traversal vulnerability

s::can moni::tools is a platform from s::can for managing a virtually unlimited number of sites, online probes, analyzers, and parameters. A path traversal vulnerability exists in s::can moni::tools version 4.6.3, which originates from allowing an authenticated attacker to retrieve any file from ...

s::can moni::tools SQL Injection Vulnerability

s::can moni::tools is a platform from s::can for managing a virtually unlimited number of sites, online probes, analyzers, and parameters. A SQL injection vulnerability exists in s::can moni::tools version 4.6.3, which originates from the ability to send a specially crafted SQL query to the serve...

CVE-2020-12508

In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the image-relocator module...

CVE-2020-12507

In s::can moni::tools before version 4.2 an authenticated attacker could get full access to the database through SQL injection. This may result in loss of confidentiality, loss of integrity and DoS...

CVE-2020-12507

In s::can moni::tools before version 4.2 an authenticated attacker could get full access to the database through SQL injection. This may result in loss of confidentiality, loss of integrity and DoS...

Path traversal

In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the image-relocator module...

Sql injection

In s::can moni::tools before version 4.2 an authenticated attacker could get full access to the database through SQL injection. This may result in loss of confidentiality, loss of integrity and DoS...

s::can moni::tools 路径遍历漏洞

s::can moni::tools is a platform from s::can for managing a virtually unlimited number of sites, online probes, analyzers and parameters. A path traversal vulnerability exists in versions of s::can moni::tools prior to 4.2, which stems from an attacker being able to obtain some files via the...

CVE-2020-12509

In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the camera-file module...

Path traversal

In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the camera-file module...

CVE-2020-12509 s::can moni::tools prone to path traversal in camera-file module

In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the camera-file module...

CVE-2020-12509

CVE-2020-12509 affects s::can moni::tools prior to version 4.2. A path traversal vulnerability in the camera-file module allows an unauthenticated attacker to obtain arbitrary files from the device. Connected sources (Red Hat security advisory, CNNVD, PT Security) corroborate the issue and specif...

CVE-2020-12508 s::can moni::tools prone to path traversal in image-relocator module

In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the image-relocator module...

CVE-2020-12508

CVE-2020-12508 affects s::can moni::tools prior to version 4.2. A path-traversal flaw in the image-relocator module allows an unauthenticated attacker to obtain arbitrary files from the device. This vulnerability exposes confidential data (CVE score 7.5, HIGH) and is evidenced in multiple sources...

CVE-2020-12508 s::can moni::tools prone to path traversal in image-relocator module

In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the image-relocator module...

CVE-2020-12507

Summary: CVE-2020-12507 affects s::can moni::tools prior to version 4.2. An authenticated attacker could trigger a SQL injection to gain full access to the database, with potential impacts to confidentiality, integrity, and availability. The Red Hat, NVD, CVE List, and other entries concur on the...

CVE-2020-12507 s::can moni::tools autheticated SQL injection

In s::can moni::tools before version 4.2 an authenticated attacker could get full access to the database through SQL injection. This may result in loss of confidentiality, loss of integrity and DoS...

PT-2022-8325 · Unknown · S::Can Moni::Tools

Name of the Vulnerable Software and Affected Versions: s::can moni::tools versions prior to 4.2 Description: The issue allows an authenticated attacker to gain full access to the database through SQL injection, potentially resulting in loss of confidentiality, loss of integrity, and Denial of...

s::can moni::tools 路径遍历漏洞

s::can moni::tools is a platform from s::can for managing a virtually unlimited number of sites, online probes, analyzers, and parameters. A path traversal vulnerability exists in s::can moni::tools version 4.2 and earlier. An attacker can exploit this vulnerability to obtain any file...