Lucene search
+L

43 matches found

ubuntucve
ubuntucve
added 2022/03/10 5:47 p.m.34 views

CVE-2022-26661

An XXE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. An authenticated user...

6.5CVSS6.7AI score0.01374EPSS
Exploits1References3
ubuntucve
ubuntucve
added 2022/03/10 5:47 p.m.50 views

CVE-2022-26662

An XML Entity Expansion XEE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. A...

7.5CVSS7.1AI score0.01927EPSS
Exploits0References3
cvelist
cvelist
added 2022/03/07 10:40 p.m.49 views

CVE-2022-26661

An XXE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. An authenticated user...

6.9AI score0.01374EPSS
Exploits1References6
cve
cve
added 2022/03/07 10:40 p.m.150 views

CVE-2022-26661

CVE-2022-26661 is an XXE vulnerability in Tryton Application Platform (Server) and its proteus CLI client. The issue allows an authenticated user to have the server parse a crafted XML SEPA file to access arbitrary files on the system. Affected families include Tryton Server (5.x up to 5.0.45; 6....

6.5CVSS6.5AI score0.01374EPSS
Exploits1References6Affected Software2
debiancve
debiancve
added 2022/03/07 10:40 p.m.40 views

CVE-2022-26661

An XXE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. An authenticated user...

6.5CVSS6.3AI score0.01374EPSS
Exploits1
osv
osv
added 2022/03/07 10:40 p.m.36 views

CVE-2022-26661

An XXE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. An authenticated user...

6.5CVSS6.7AI score0.01374EPSS
Exploits1References8
cvelist
cvelist
added 2022/03/07 10:40 p.m.33 views

CVE-2022-26662

An XML Entity Expansion XEE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. A...

7.6AI score0.01927EPSS
Exploits0References6
cve
cve
added 2022/03/07 10:40 p.m.156 views

CVE-2022-26662

CVE-2022-26662 describes an XML Entity Expansion (XEE) vulnerability in Tryton Application Platform (Server) and Proteus, allowing an unauthenticated attacker to send crafted XML-RPC to exhaust server resources. Affected ranges include Tryton Server 5.x up through 5.0.45, 6.x up through 6.0.15, 6...

7.5CVSS7.2AI score0.01927EPSS
Exploits0References6Affected Software2
osv
osv
added 2022/03/07 10:40 p.m.26 views

CVE-2022-26662

An XML Entity Expansion XEE issue was discovered in Tryton Application Platform Server 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform Command Line Client proteus 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. A...

7.5CVSS7.4AI score0.01927EPSS
Exploits0References8
nvd
nvd
added 2019/04/05 1:29 a.m.20 views

CVE-2019-10868

In trytond/model/modelstorage.py in Tryton 4.2 before 4.2.21, 4.4 before 4.4.19, 4.6 before 4.6.14, 4.8 before 4.8.10, and 5.0 before 5.0.6, an authenticated user can order records based on a field for which he has no access right. This may allow the user to guess values...

6.5CVSS5.2AI score0.01277EPSS
Exploits0References4
fedora
fedora
added 2016/09/13 6:29 p.m.29 views

[SECURITY] Fedora 25 Update: trytond-party-4.0.2-1.fc25

party module for Tryton application server...

5.3CVSS2.2AI score0.01819EPSS
Exploits0
fedora
fedora
added 2016/09/13 6:29 p.m.19 views

[SECURITY] Fedora 25 Update: trytond-account-4.0.3-1.fc25

account module for Tryton application server...

5.3CVSS2.6AI score0.01819EPSS
Exploits0
fedora
fedora
added 2016/09/13 6:29 p.m.20 views

[SECURITY] Fedora 25 Update: trytond-google-maps-4.0.2-1.fc25

google-maps module for Tryton application server...

5.3CVSS1.9AI score0.01819EPSS
Exploits0
fedora
fedora
added 2016/09/13 6:29 p.m.23 views

[SECURITY] Fedora 25 Update: trytond-company-4.0.3-1.fc25

company module for Tryton application server...

5.3CVSS2AI score0.01819EPSS
Exploits0
fedora
fedora
added 2016/09/13 6:29 p.m.26 views

[SECURITY] Fedora 25 Update: trytond-purchase-4.0.3-1.fc25

purchase module for Tryton application server...

5.3CVSS2AI score0.01819EPSS
Exploits0
fedora
fedora
added 2016/09/13 6:29 p.m.20 views

[SECURITY] Fedora 25 Update: trytond-account-statement-4.0.2-1.fc25

account-statement module for Tryton application server...

5.3CVSS1.9AI score0.01819EPSS
Exploits0
fedora
fedora
added 2016/09/13 6:29 p.m.27 views

[SECURITY] Fedora 25 Update: trytond-sale-4.0.3-1.fc25

sale module for Tryton application server...

5.3CVSS1.9AI score0.01819EPSS
Exploits0
fedora
fedora
added 2016/09/13 6:29 p.m.27 views

[SECURITY] Fedora 25 Update: tryton-4.0.4-1.fc25

This is client for the Tryton application framework. The server can be found in the trytond package...

5.3CVSS2.5AI score0.01819EPSS
Exploits0
fedora
fedora
added 2016/09/13 6:29 p.m.23 views

[SECURITY] Fedora 25 Update: trytond-account-product-4.0.2-1.fc25

account-product module for Tryton application server...

5.3CVSS1.9AI score0.01819EPSS
Exploits0
cnvd
cnvd
added 2016/09/08 12:0 a.m.6 views

Tryton Information Disclosure Vulnerability

Tryton is a set of general-purpose application platform based on Python and PostgreSQL. It is an independent branch project of OpenERP Enterprise Resource Planning ERP and Customer Relationship Management CRM system, which contains modules for financial management, marketing management, customer...

4.4CVSS6.6AI score0.01819EPSS
Exploits0References1
Rows per page
Query Builder