Easyinstall Security Vulnerabilities and Issues — Easyinstall CVE List

Lucene search

IxpdataEasyinstall

6 matches found

CVE•added 2020/01/23 9:15 p.m.•70 views

CVE-2019-19893

In IXP EasyInstall 6.2.13723, there is Directory Traversal on TCP port 8000 via the Engine Service by an unauthenticated attacker, who can access the server's filesystem with the access rights of NT AUTHORITY\SYSTEM.

7.8CVSS7.6AI score0.01827EPSS

CVE•added 2020/01/23 9:15 p.m.•48 views

CVE-2019-19898

In IXP EasyInstall 6.2.13723, there are cleartext credentials in network communication on TCP port 20050 when using the Administrator console remotely.

7.5CVSS7.5AI score0.00168EPSS

CVE•added 2023/10/19 9:15 p.m.•43 views

CVE-2023-27793

An issue discovered in IXP Data Easy Install v.6.6.14884.0 allows local attackers to gain escalated privileges via weak encoding of sensitive information.

7.8CVSS7.6AI score0.00027EPSS

CVE•added 2023/10/19 9:15 p.m.•32 views

CVE-2023-30132

An issue discovered in IXP Data EasyInstall 6.6.14907.0 allows attackers to gain escalated privileges via static Cryptographic Key.

7.8CVSS7.7AI score0.00015EPSS

CVE•added 2023/10/19 9:15 p.m.•29 views

CVE-2023-27795

An issue found in IXP Data Easy Install v.6.6.14884.0 allows a local attacker to gain privileges via a static XOR key.

7.8CVSS7.5AI score0.00027EPSS

CVE•added 2023/10/19 9:15 p.m.•28 views

CVE-2023-27792

An issue found in IXP Data Easy Install v.6.6.14884.0 allows an attacker to escalate privileges via lack of permissions applied to sub directories.

7.8CVSS7.7AI score0.0002EPSS