3 matches found
CVE-2020-12508
CVE-2020-12508 affects s::can moni::tools prior to version 4.2. A path-traversal flaw in the image-relocator module allows an unauthenticated attacker to obtain arbitrary files from the device. This vulnerability exposes confidential data (CVE score 7.5, HIGH) and is evidenced in multiple sources...
CVE-2020-12509
CVE-2020-12509 affects s::can moni::tools prior to version 4.2. A path traversal vulnerability in the camera-file module allows an unauthenticated attacker to obtain arbitrary files from the device. Connected sources (Red Hat security advisory, CNNVD, PT Security) corroborate the issue and specif...
CVE-2020-12507
Summary: CVE-2020-12507 affects s::can moni::tools prior to version 4.2. An authenticated attacker could trigger a SQL injection to gain full access to the database, with potential impacts to confidentiality, integrity, and availability. The Red Hat, NVD, CVE List, and other entries concur on the...