Artica Proxy Security Vulnerabilities and Issues — Artica Proxy CVE List

Lucene search

ArticatechArtica Proxy

6 matches found

CVE•added 2020/06/22 6:15 p.m.•54 views

CVE-2020-13158

Artica Proxy before 4.30.000000 Community Edition allows Directory Traversal via the fw.progrss.details.php popup parameter.

7.5CVSS7.6AI score0.91826EPSS

CVE•added 2020/03/22 8:15 p.m.•50 views

CVE-2020-10818

Artica Proxy 4.26 allows remote command execution for an authenticated user via shell metacharacters in the "Modify the hostname" field.

7.2CVSS8.3AI score0.07561EPSS

CVE•added 2020/07/15 9:15 p.m.•40 views

CVE-2020-15051

An issue was discovered in Artica Proxy before 4.30.000000. Stored XSS exists via the Server Domain Name, Your Email Address, Group Name, MYSQL Server, Database, MYSQL Username, Group Name, and Task Description fields.

6.1CVSS5.8AI score0.25842EPSS

CVE•added 2020/07/20 5:15 p.m.•35 views

CVE-2020-15052

An issue was discovered in Artica Proxy CE before 4.28.030.418. SQL Injection exists via the Netmask, Hostname, and Alias fields.

7.5CVSS8AI score0.09104EPSS

CVE•added 2020/06/22 6:15 p.m.•32 views

CVE-2020-13159

Artica Proxy before 4.30.000000 Community Edition allows OS command injection via the Netbios name, Server domain name, dhclient_mac, Hostname, or Alias field. NOTE: this may overlap CVE-2020-10818.

10CVSS7.8AI score0.17647EPSS

CVE•added 2020/07/20 5:15 p.m.•29 views

CVE-2020-15053

An issue was discovered in Artica Proxy CE before 4.28.030.418. Reflected XSS exists via these search fields: real time request, System Events, Proxy Events, Proxy Objects, and Firewall objects.

6.1CVSS6AI score0.11797EPSS