Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1
CVE-2022-29540
- EPSS 1.15%
- Veröffentlicht 02.06.2022 14:15:48
- Zuletzt bearbeitet 21.11.2024 06:59:17
resi-calltrace in RESI Gemini-Net 4.2 is affected by Multiple XSS issues. Unauthenticated remote attackers can inject arbitrary web script or HTML into an HTTP GET parameter that reflects user input without sanitization. This exists on numerous appli...
5.3
CVE-2022-29538
- EPSS 1.71%
- Veröffentlicht 12.05.2022 15:15:07
- Zuletzt bearbeitet 21.11.2024 06:59:17
RESI Gemini-Net Web 4.2 is affected by Improper Access Control in authorization logic. An unauthenticated user is able to access some critical resources.
- EPSS 2.17%
- Veröffentlicht 12.05.2022 15:15:07
- Zuletzt bearbeitet 21.11.2024 06:59:17
resi-calltrace in RESI Gemini-Net 4.2 is affected by OS Command Injection. It does not properly check the parameters sent as input before they are processed on the server. Due to the lack of validation of user input, an unauthenticated attacker can b...
1