ReportizFlow
Filtered by vendor Secudos
Subscriptions
Total
5 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-40361 | 1 Secudos | 1 Qiata | 2024-11-21 | 7.8 High |
| SECUDOS Qiata (DOMOS OS) 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user. | ||||
| CVE-2020-14294 | 1 Secudos | 1 Qiata Fta | 2024-11-21 | 6.1 Medium |
| An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board. | ||||
| CVE-2020-14293 | 1 Secudos | 1 Domos | 2024-11-21 | 7.5 High |
| conf_datetime in Secudos DOMOS 5.8 allows remote attackers to execute arbitrary commands as root via shell metacharacters in the zone field (obtained from the web interface). | ||||
| CVE-2019-18665 | 1 Secudos | 1 Domos | 2024-11-21 | 7.5 High |
| The Log module in SECUDOS DOMOS before 5.6 allows local file inclusion. | ||||
| CVE-2019-18664 | 1 Secudos | 1 Domos | 2024-11-21 | 5.4 Medium |
| The Log module in SECUDOS DOMOS before 5.6 allows XSS. | ||||
Page 1 of 1.