Multiple buffer overflows in BigAnt Server 2.50 SP6 and earlier allow user-assisted remote attackers to cause a denial of service (application crash) via a crafted ZIP file that is not properly handled when the victim uses the (1) Update or (2) Plug-In console menu item.
7AI Score
0.004EPSS
BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control.
7.5CVSS
7.5AI Score
0.002EPSS
BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control issues.
8.8CVSS
8.7AI Score
0.003EPSS
BigAnt Software BigAnt Server v5.6.06 was discovered to be vulnerable to directory traversal attacks.
7.5CVSS
7.6AI Score
0.102EPSS
BigAnt Software BigAnt Server v5.6.06 was discovered to utilize weak password hashes.
5.3CVSS
5.4AI Score
0.004EPSS
BigAnt Software BigAnt Server v5.6.06 was discovered to contain a Cross-Site Request Forgery (CSRF).
8.8CVSS
8.7AI Score
0.002EPSS
BigAnt Software BigAnt Server v5.6.06 was discovered to contain a cross-site scripting (XSS) vulnerability.
5.4CVSS
5.3AI Score
0.001EPSS
An issue in BigAnt Software BigAnt Server v5.6.06 can lead to a Denial of Service (DoS).
7.5CVSS
7.4AI Score
0.001EPSS
7.5CVSS
7.5AI Score
0.002EPSS