3 matches found
CVE-2022-28719
CVE-2022-28719 affects Hammock AssetView: missing authentication for critical functions on the managing server can allow a remote attacker to upload a crafted configuration file, potentially causing managed clients to execute arbitrary code with administrative privileges. Affected products are As...
CVE-2017-2241
Hammock AssetView for MacOS up to version 9.2.0 is affected by a SQL injection vulnerability in the File Transfer Web Service. The vulnerability allows a remote attacker to execute arbitrary SQL commands against the AssetView database. The issue is documented across multiple sources (e.g., CNVD-2...
CVE-2017-2240
CVE-2017-2240 is a directory traversal vulnerability in Hammock AssetView for MacOS, affecting version 9.2.0 and earlier. The flaw allows a remote attacker to read arbitrary files through the AssetView’s File Transfer Web Service. The provided connected documents confirm the affected product and ...