Pandora Fms@742 Security Vulnerabilities and Issues — Pandora Fms@742 CVE List

Lucene search

ArticaPandora Fms742

3 matches found

CVE•added 2021/05/07 4:15 a.m.•75 views

CVE-2021-32099

A SQL injection vulnerability in the pandora_console component of Artica Pandora FMS 742 allows an unauthenticated attacker to upgrade his unprivileged session via the /include/chart_generator.php session_id parameter, leading to a login bypass.

9.8CVSS9.7AI score0.56951EPSS

CVE•added 2021/05/07 4:15 a.m.•74 views

CVE-2021-32100

A remote file inclusion vulnerability exists in Artica Pandora FMS 742, exploitable by the lowest privileged user.

6.5CVSS6.4AI score0.00514EPSS

CVE•added 2021/05/07 4:15 a.m.•39 views

CVE-2021-32098

Artica Pandora FMS 742 allows unauthenticated attackers to perform Phar deserialization.

9.8CVSS9.4AI score0.0279EPSS