18 matches found
CVE-2020-11587
CVE-2020-11587 affects CIPPlanner CIPAce 9.1 Build 2019092801, where an unauthenticated attacker can issue an API request and read the contents of ETL Processes running on the server. The connected records consistently describe this exposure but do not provide a vendor-provided fix or version-spe...
CVE-2020-11595
An unauthenticated attacker can invoke the CIPPlanner CIPAce 9.1 Build 2019092801 API and obtain an upload folder path that reveals the hostname in a UNC path, indicating information disclosure via the API endpoint handling uploads. Affected product: CIPPlanner CIPAce (9.1, build 2019092801). Roo...
CVE-2020-11586
CIPPlanner CIPAce 9.1 Build 2019092801 is affected by an XXE in the API that accepts XML DTD data. An unauthenticated, network-based attacker can exploit this via crafted XML requests. CVSSv3.1/2.0 scores indicate High to Critical impact on confidentiality, integrity, and availability (base 9.8, ...
CVE-2020-11592
CVE-2020-11592 affects CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can issue an API request and enumerate the columns of a table in the CIP database, exposing potential schema and column-level information. According to the linked disclosures, impact is information disclosu...
CVE-2020-11597
CVE-2020-11597 affects CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can send an HTTP POST request to inject SQL statements in the user context of the database owner, enabling potential disclosure or modification of data. The NVD metrics show a CVSSv3.1 base score of 9.8 (CR...
CVE-2020-11593
An issue in CIPPlanner CIPAce 9.1 Build 2019092801 allows an unauthenticated attacker to issue an HTTP POST with injected HTML data that is later leveraged to send emails from a customer’s trusted address. The description across sources (NVD, Red Hat, CNVD, etc.) consistently states this vulnerab...
CVE-2020-11598
CVE-2020-11598 affects CIPPlanner CIPAce 9.1 Build 2019092801; Upload.ashx lets remote attackers upload and execute an ASHX file to achieve arbitrary code execution. The connected sources corroborate a code-execution vector via file upload, with no explicit exploit details or patch information pr...
CVE-2020-11588
CVE-2020-11588 affects CIPPlanner CIPAce 9.1 Build 2019092801. The vulnerability allows an unauthenticated attacker to perform an HTTP GET that accesses two files containing customer data and application paths. Root cause and exact technical details are not explicitly provided in the connected do...
CVE-2020-11590
CVE-2020-11590 affects CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can issue an HTTP GET to HealthPage.aspx and obtain the internal server name, exposing server identity. The core issue is a information disclosure via HealthPage.aspx; CVSS vectors from the NVD indicate med...
CVE-2020-11599
The CVE-2020-11599 vulnerability affects CIPPlanner CIPAce 6.80 Build 2016031401, where the GetDistributedPOP3 function can expose the SMTP username and password. Multiple sources (e.g., NVD, Red Hat, CNVD) describe an issue that could lead to disclosure of SMTP credentials, resulting in potentia...
CVE-2020-11594
CVE-2020-11594 affects CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can send an API request that triggers a stack error, causing the system to reveal the full file path. This is the explicit impact described across multiple sources. The available documents do not provide a ...
CVE-2020-11591
CVE-2020-11591 affects CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can trigger an API request to reveal the full application path and the customer name, exposing sensitive configuration/identity information. The incident is described across multiple sources (Red Hat, CNVD,...
CVE-2020-11589
CIPPlanner CIPAce 9.1 Build 2019092801 is affected by an Insecure Direct Object Reference information-disclosure vulnerability (CVE-2020-11589). An unauthenticated attacker can issue a GET request to a URL and access data that should be restricted to authenticated users. CVSSv3.1 vector and base ...
CVE-2020-11596
The set of connected sources confirms CVE-2020-11596 is a directory traversal vulnerability in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can issue HTTP GET requests to a specific URL and enumerate files/directories on the server, exposing information via path traversal. ...
CVE-2024-50617
CVE-2024-50617 affects CIPPlanner CIPAce prior to 9.17. The issue lies in the File Download and Get File handler components, where an authenticated user can change the file id parameter or supply a physical file path in the URL query to download files they should not access. The impact is unautho...
CVE-2024-50620
Summary: CVE-2024-50620 affects CIPPlanner CIPAce versions prior to 9.17. In the rich text editor and document management components, an authorized user can upload executable files (via inserting images or file uploads). Those executables can be executed if stored in a non-shared directory or if ...
CVE-2024-50619
CVE-2024-50619 affects CIPPlanner CIPAce prior to 9.17 in the My Account and User Management components. A low-privileged authenticated user can escalate privileges by tampering with the client’s user ID to access other accounts, and can elevate privileges by modifying information of a user role ...
CVE-2024-50618
CVE-2024-50618 affects CIPPlanner CIPAce prior to version 9.17. The authentication component relies on single-factor authentication, and when internal accounts login is enabled, an attacker could bypass protection and potentially obtain full authentication if the secret of the single-factor schem...