Lucene search
K

206 matches found

Vulnrichment
Vulnrichment
added 2023/02/27 12:0 a.m.6 views

CVE-2023-26758

Sme.UP TOKYO V6R1M220406 was discovered to contain an arbitrary file download vulnerabilty via the component /ResourceService...

7.8AI score0.00935EPSS
Exploits1References1
CVE
CVE
added 2023/02/27 12:0 a.m.58 views

CVE-2023-26759

The CVE-2023-26759 entry concerns Sme.UP ERP TOKYO V6R1M220406 and reports an OS command injection in the XMService component. The vulnerability affects the specified build and is described as enabling command execution without user interaction, with CVSS v3.1 metrics indicating a high-impact, ne...

8.8CVSS8.9AI score0.02377EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/02/27 12:0 a.m.4 views

PT-2023-20780 · Unknown · Sme.Up Tokyo

Name of the Vulnerable Software and Affected Versions: Sme.UP TOKYO version V6R1M220406 Description: The issue is related to an arbitrary file download via the /ResourceService component. This allows unauthorized access to files. Recommendations: For Sme.UP TOKYO version V6R1M220406, as a tempora...

7.5CVSS7.4AI score0.00935EPSS
Exploits1References3
CVE
CVE
added 2023/02/27 12:0 a.m.46 views

CVE-2023-26762

CVE-2023-26762 affects Sme.UP ERP TOKYO V6R1M220406 and is an arbitrary file upload vulnerability. The provided data describe an external-facing issue with a CVSS v3.1 base score of 8.8 (High) and impact on confidentiality, integrity, and availability. The root cause is an arbitrary file upload f...

8.8CVSS8.8AI score0.00973EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/02/27 12:0 a.m.56 views

CVE-2023-26758

Affected software: Sme.UP TOKYO V6R1M220406. Vulnerability: An arbitrary file download vulnerability exists in the /ResourceService component. Root cause / vector: Unspecified in detail beyond the /ResourceService path being vulnerable; affected product exposed to file download via that component...

7.5CVSS7.6AI score0.00935EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/02/27 12:0 a.m.53 views

CVE-2023-26760

CVE-2023-26760 affects Sme.UP ERP TOKYO V6R1M220406. The /debug endpoint exposes an information disclosure vulnerability that allows attackers to access cleartext credentials needed to authenticate to the AS/400 system. This is documented across multiple sources, with impact described as high con...

7.5CVSS7.3AI score0.00518EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/02/27 12:0 a.m.30 views

CVE-2023-26760

Sme.UP ERP TOKYO V6R1M220406 was discovered to contain an information disclosure vulnerability via the /debug endpoint. This vulnerability allows attackers to access cleartext credentials needed to authenticate to the AS400 system...

7.5AI score0.00518EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/02/27 12:0 a.m.6 views

Sme.UP ERP TOKYO V6R1M220406 路径遍历漏洞

Sme.UP ERP is a management software developed by Sme.UP, an Italian company, to meet the needs of its customers. A security vulnerability exists in Sme.UP ERP TOKYO V6R1M220406 version, which originates from an arbitrary file download vulnerability...

7.5CVSS7.5AI score0.00935EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/02/27 12:0 a.m.5 views

Sme.UP ERP 代码问题漏洞

Sme.UP ERP is a management software developed by Sme.UP Italy to meet the needs of its customers. A security vulnerability exists in Sme.UP ERP TOKYO V6R1M220406 version, which originates from an arbitrary file upload vulnerability...

8.8CVSS8.1AI score0.00973EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/02/27 12:0 a.m.7 views

Sme.UP ERP TOKYO V6R1M220406 操作系统命令注入漏洞

Sme.UP ERP is a management software developed by Sme.UP Italy to meet the needs of its customers. A security vulnerability exists in Sme.UP ERP TOKYO V6R1M220406 version, which originates from the presence of an operating system command injection vulnerability...

8.8CVSS8AI score0.02377EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/02/27 12:0 a.m.27 views

CVE-2023-26758

Sme.UP TOKYO V6R1M220406 was discovered to contain an arbitrary file download vulnerabilty via the component /ResourceService...

7.8AI score0.00935EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/02/27 12:0 a.m.7 views

PT-2023-20783 · Ibm · As/400

Name of the Vulnerable Software and Affected Versions: Sme.UP ERP TOKYO version V6R1M220406 Description: The issue allows attackers to access cleartext credentials needed to authenticate to the AS400 system via the "/debug" endpoint. This enables unauthorized access to sensitive information...

7.5CVSS7.4AI score0.00518EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/02/27 12:0 a.m.32 views

CVE-2023-26759

Sme.UP ERP TOKYO V6R1M220406 was discovered to contain an OS command injection vulnerability via calls made to the XMService component...

9.2AI score0.02377EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/02/27 12:0 a.m.7 views

Sme.UP ERP 安全漏洞

Sme.UP ERP is a management software developed to meet the needs of customers by Sme.UP Italy. A security vulnerability exists in Sme.UP ERP TOKYO version V6R1M220406, which originates from the presence of an information disclosure vulnerability that can be exploited by an attacker to gain access ...

7.5CVSS7.3AI score0.00518EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/02/27 12:0 a.m.25 views

CVE-2023-26762

Sme.UP ERP TOKYO V6R1M220406 was discovered to contain an arbitrary file upload vulnerability...

9AI score0.00973EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/02/27 12:0 a.m.6 views

PT-2023-20785 · Unknown · Sme.Up Erp Tokyo

Name of the Vulnerable Software and Affected Versions: Sme.UP ERP TOKYO version V6R1M220406 Description: The issue is related to an arbitrary file upload vulnerability. Recommendations: For Sme.UP ERP TOKYO version V6R1M220406, at the moment, there is no information about a newer version that...

8.8CVSS8.5AI score0.00973EPSS
Exploits1References3
Openbugbounty
Openbugbounty
added 2023/02/13 6:24 p.m.13 views

tokyo.mochikaeri.info Cross Site Scripting vulnerability OBB-3193769

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/01/07 5:0 p.m.8 views

tokyoautosalon.jp Cross Site Scripting vulnerability OBB-3131920

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/12/24 4:13 p.m.6 views

tokyohk.brandoff.com.hk Cross Site Scripting vulnerability OBB-3117445

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/11/27 3:4 p.m.17 views

cart.bihaku.tokyo Cross Site Scripting vulnerability OBB-3074454

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Rows per page
Query Builder