Filtered by vendor Nask Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-7267 1 Nask 1 Ezd Rp 2024-11-21 6.5 Medium
Exposure of Sensitive Information vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to retrieve information about IP infrastructure and credentials. This issue affects EZD RP all versions before 19.6
CVE-2024-7266 1 Nask 1 Ezd Rp 2024-10-10 4.3 Medium
Incorrect User Management vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to list all users in the system, including those from other organizations. This issue affects EZD RP: from 15 before 15.84, from 16 before 16.15, from 17 before 17.2.
CVE-2024-7265 2 Nask, Nask-pib 2 Ezd Rp, Ezd Rp 2024-10-10 8.8 High
Incorrect User Management vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP allows logged-in user to change the password of any user, including root user, which could lead to privilege escalation. This issue affects EZD RP: from 15 before 15.84, from 16 before 16.15, from 17 before 17.2.