23 matches found
EUVD-2022-27693
Malicious code in bioql PyPI...
CVE-2022-22547
Simple Diagnostics Agent - versions 1.0 up to version 1.57., allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security exploits...
CVE-2022-24396
The Simple Diagnostics Agent - versions 1.0 up to version 1.57, does not perform any authentication checks for functionalities that can be accessed via localhost on http port 3005. Due to lack of authentication checks, an attacker could access administrative or other privileged functionalities an...
SAP FRUN Simple Diagnostics Agent 1.0 Missing Authentication
Onapsis Security Advisory 2022-0004: Missing Authentication check in SAP Focused Run Simple Diagnostics Agent 1.0 Impact on Business Because the Simple Diagnostic Agent SDA handles several important configuration and critical credential information, a successful attack could lead to the control o...
CVE-2022-27657
A highly privileged remote attacker, can gain unauthorized access to display contents of restricted directories by exploiting insufficient validation of path information in SAP Focused Run Simple Diagnostics Agent 1.0 - version 1.0...
CVE-2022-27657
A highly privileged remote attacker, can gain unauthorized access to display contents of restricted directories by exploiting insufficient validation of path information in SAP Focused Run Simple Diagnostics Agent 1.0 - version 1.0...
Input validation
A highly privileged remote attacker, can gain unauthorized access to display contents of restricted directories by exploiting insufficient validation of path information in SAP Focused Run Simple Diagnostics Agent 1.0 - version 1.0...
CVE-2022-27657
CVE-2022-27657 affects SAP Focused Run (Simple Diagnostics Agent 1.0) 1.0. The vulnerability is a directory traversal flaw caused by insufficient validation of path information, allowing a highly privileged remote attacker to display contents of restricted directories. The issue is tied to Simple...
CVE-2022-27657
A highly privileged remote attacker, can gain unauthorized access to display contents of restricted directories by exploiting insufficient validation of path information in SAP Focused Run Simple Diagnostics Agent 1.0 - version 1.0...
PT-2022-18553 · Sap · Sap Focused Run
Name of the Vulnerable Software and Affected Versions: SAP Focused Run Simple Diagnostics Agent 1.0 version 1.0 Description: A highly privileged remote attacker can gain unauthorized access to display contents of restricted directories by exploiting insufficient validation of path information...
CVE-2022-24396
The Simple Diagnostics Agent - versions 1.0 up to version 1.57, does not perform any authentication checks for functionalities that can be accessed via localhost on http port 3005. Due to lack of authentication checks, an attacker could access administrative or other privileged functionalities an...
CVE-2022-24396
The Simple Diagnostics Agent - versions 1.0 up to version 1.57, does not perform any authentication checks for functionalities that can be accessed via localhost on http port 3005. Due to lack of authentication checks, an attacker could access administrative or other privileged functionalities an...
Authentication flaw
The Simple Diagnostics Agent - versions 1.0 up to version 1.57, does not perform any authentication checks for functionalities that can be accessed via localhost on http port 3005. Due to lack of authentication checks, an attacker could access administrative or other privileged functionalities an...
CVE-2022-22547
Simple Diagnostics Agent - versions 1.0 up to version 1.57., allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security exploits...
CVE-2022-22547
Simple Diagnostics Agent - versions 1.0 up to version 1.57., allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security exploits...
CVE-2022-22547
Simple Diagnostics Agent - versions 1.0 up to version 1.57., allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security exploits...
SAP Focused Run 信息泄露漏洞
SAP Focused Run is a data center and large customer system operations management solution the ultimate solution for high-volume monitoring, alerting, diagnostics, and analytics from SAP, Germany. An information disclosure vulnerability exists in SAP Focused Run Simple Diagnostics Agent 1.0...
CVE-2022-22547
Simple Diagnostics Agent - versions 1.0 up to version 1.57., allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security exploits...
CVE-2022-22547
CVE-2022-22547 concerns the Simple Diagnostics Agent. Affected software: Simple Diagnostics Agent versions 1.0 through 1.57. The issue is an information disclosure vulnerability allowing an attacker to access restricted information via a random port range (9000–65535), enabling information gather...
CVE-2022-24396
CVE-2022-24396 affects SAP Focused Run’s Simple Diagnostics Agent (versions 1.0–1.57). The vulnerability stems from missing authentication checks for functions accessible via localhost on http://localhost:3005, enabling an attacker to access administrative/privileged functionalities and read, mod...