Biostar 2 Security Vulnerabilities and Issues — Biostar 2 CVE List

Lucene search

SupremaincBiostar 2

4 matches found

CVE•added 2023/08/03 4:15 p.m.•31 views

CVE-2023-33365

A path traversal vulnerability exists in Suprema BioStar 2 before 2.9.1, which allows unauthenticated attackers to fetch arbitrary files from the server's web server.

7.5CVSS7.5AI score0.00308EPSS

CVE•added 2023/08/03 4:15 p.m.•30 views

CVE-2023-33364

An OS Command injection vulnerability exists in Suprema BioStar 2 before V2.9.1, which allows authenticated users to execute arbitrary OS commands on the BioStar 2 server.

8.8CVSS8.9AI score0.02413EPSS

CVE•added 2023/08/03 4:15 p.m.•26 views

CVE-2023-33366

A SQL injection vulnerability exists in Suprema BioStar 2 before 2.9.1, which allows authenticated users to inject arbitrary SQL directives into an SQL statement and execute arbitrary SQL commands.

8.8CVSS8.8AI score0.00049EPSS

CVE•added 2023/08/03 4:15 p.m.•24 views

CVE-2023-33363

An authentication bypass vulnerability exists in Suprema BioStar 2 before 2.9.1, which allows unauthenticated users to access some functionality on BioStar 2 servers.

7.5CVSS7.7AI score0.00084EPSS