Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-8097

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00726EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/03/27 12:19 a.m.17 views

CVE-2024-55028

A template injection vulnerability in the Dashboard of NASA Fprime v3.4.3 allows attackers to execute arbitrary code via uploading a crafted Vue file...

9.8CVSS8.3AI score0.00726EPSS
Exploits1References1
NVD
NVD
added 2025/03/25 9:15 p.m.14 views

CVE-2024-55028

A template injection vulnerability in the Dashboard of NASA Fprime v3.4.3 allows attackers to execute arbitrary code via uploading a crafted Vue file...

9.8CVSS0.00726EPSS
Exploits1References1
OSV
OSV
added 2025/03/25 9:15 p.m.3 views

CVE-2024-55028

A template injection vulnerability in the Dashboard of NASA Fprime v3.4.3 allows attackers to execute arbitrary code via uploading a crafted Vue file...

9.8CVSS6.1AI score0.00726EPSS
Exploits1References1
Snyk
Snyk
added 2025/03/25 8:42 p.m.3 views

Cross-site Scripting (XSS)

Overview fprime-gds is a F Prime Flight Software Ground Data System layer Affected versions of this package are vulnerable to Cross-site Scripting XSS by uploading a malicious Vue file as a cmdDisp.CMDNOOPSTRING in the Dashboard tab. Details Cross-site scripting or XSS is a code vulnerability tha...

9.8CVSS5.3AI score0.00726EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/03/25 12:0 a.m.9 views

CVE-2024-55028

A template injection vulnerability in the Dashboard of NASA Fprime v3.4.3 allows attackers to execute arbitrary code via uploading a crafted Vue file...

8.2AI score0.00726EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/03/25 12:0 a.m.10 views

CVE-2024-55028

A template injection vulnerability in the Dashboard of NASA Fprime v3.4.3 allows attackers to execute arbitrary code via uploading a crafted Vue file...

0.00726EPSS
Exploits1References1
CVE
CVE
added 2025/03/25 12:0 a.m.59 views

CVE-2024-55028

CVE-2024-55028 affects NASA Fprime v3.4.3 Dashboard via a template injection in the Vue-based dashboard that enables arbitrary code execution when uploading a crafted Vue file. Reported metrics show a CRITICAL CVSS 3.1 base score (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) with network exploitation, no...

9.8CVSS8.2AI score0.00726EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/03/25 12:0 a.m.5 views

fprime 代码注入漏洞

fprime is a NASA open source framework for flight software and embedded systems. A security vulnerability exists in fprime v3.4.3, which stems from template injection in the dashboard and could lead to an attacker executing arbitrary code by uploading a specially crafted Vue file...

9.8CVSS7.5AI score0.00726EPSS
Exploits1References3
Rows per page
Query Builder