Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:53 a.m.2 views

CVE-2023-22336

Path traversal vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to upload a specially crafted file to an arbitrary directory. As a result of exploiting this vulnerability with CVE-2023-22335 and CVE-2023-22344 vulnerabilitie...

9.8CVSS7.8AI score0.01099EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:52 a.m.3 views

CVE-2023-22335

Improper access control vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to bypass access restriction and download an arbitrary file of the directory where the product runs. As a result of exploiting this vulnerability with...

9.8CVSS7.7AI score0.01099EPSS
Exploits0References1
NVD
NVD
added 2023/03/06 12:15 a.m.20 views

CVE-2023-22336

Path traversal vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to upload a specially crafted file to an arbitrary directory. As a result of exploiting this vulnerability with CVE-2023-22335 and CVE-2023-22344 vulnerabilitie...

9.8CVSS9.1AI score0.01099EPSS
Exploits0References2
NVD
NVD
added 2023/03/06 12:15 a.m.25 views

CVE-2023-22344

Use of hard-coded credentials vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to obtain the password of the debug tool and execute it. As a result of exploiting this vulnerability with CVE-2023-22335 and CVE-2023-22336...

9.8CVSS9.1AI score0.00861EPSS
Exploits0References2
Prion
Prion
added 2023/03/06 12:15 a.m.17 views

Improper access control

Improper access control vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to bypass access restriction and download an arbitrary file of the directory where the product runs. As a result of exploiting this vulnerability with...

5CVSS9.1AI score0.01099EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2023/03/06 12:15 a.m.19 views

Hardcoded credentials

Use of hard-coded credentials vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to obtain the password of the debug tool and execute it. As a result of exploiting this vulnerability with CVE-2023-22335 and CVE-2023-22336...

7.5CVSS9.1AI score0.01099EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2023/03/06 12:15 a.m.16 views

Path traversal

Path traversal vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to upload a specially crafted file to an arbitrary directory. As a result of exploiting this vulnerability with CVE-2023-22335 and CVE-2023-22344 vulnerabilitie...

7.5CVSS9AI score0.01099EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2023/03/05 12:0 a.m.50 views

CVE-2023-22336

Technical details about CVE-2023-22336 are not publicly available in the provided connected documents. Monitor for updates; no concrete product/version/impact information is provided here.

9.8CVSS8.9AI score0.01099EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2023/03/05 12:0 a.m.21 views

CVE-2023-22336

Path traversal vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to upload a specially crafted file to an arbitrary directory. As a result of exploiting this vulnerability with CVE-2023-22335 and CVE-2023-22344 vulnerabilitie...

9.2AI score0.01099EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/03/05 12:0 a.m.37 views

CVE-2023-22335

Improper access control vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to bypass access restriction and download an arbitrary file of the directory where the product runs. As a result of exploiting this vulnerability with...

9.2AI score0.00742EPSS
Exploits0References2
CVE
CVE
added 2023/03/05 12:0 a.m.48 views

CVE-2023-22344

CVE-2023-22344 concerns hard-coded credentials in SS1 v13.0.0.40 and earlier and Rakuraku PC Cloud Agent v2.1.8 and earlier, enabling a remote attacker to obtain the debug password and execute it. The vulnerability is described in Red Hat and NVD sources as enabling a remote code execution with S...

9.8CVSS9AI score0.00861EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2023/03/05 12:0 a.m.64 views

CVE-2023-22335

CVE-2023-22335 affects SS1 v13.0.0.40 and earlier and Rakuraku PC Cloud Agent v2.1.8 and earlier. It is an improper access control vulnerability that lets a remote attacker bypass restrictions and download an arbitrary file from the product directory. The issue is contextually chained with CVE-20...

7.5CVSS9AI score0.00742EPSS
Exploits0References2Affected Software2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/03/01 12:0 a.m.48 views

JVN#57224029: Multiple vulnerabilities in SS1 and Rakuraku PC Cloud

SS1 is asset management software and Rakuraku PC Cloud is cloud-based asset management service. SS1 and Rakuraku PC Cloud Agent contain multiple vulnerabilities listed below. Improper Access Control CWE-284 - CVE-2023-22335 Version| Vector| Score ---|---|--- CVSS v3|...

9.8CVSS9.4AI score0.01099EPSS
Exploits0
Rows per page
Query Builder