Freshtomato

Freshtomato

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2023-3991

  • EPSS 1.28%
  • Veröffentlicht 16.10.2023 10:15:11
  • Zuletzt bearbeitet 21.11.2024 08:18:29

An OS command injection vulnerability exists in the httpd iperfrun.cgi functionality of FreshTomato 2023.3. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can send an HTTP request to trigger this vulnerability.

7.5

CVE-2022-38451

Exploit
  • EPSS 4.16%
  • Veröffentlicht 30.01.2023 11:15:09
  • Zuletzt bearbeitet 21.11.2024 07:16:30

A directory traversal vulnerability exists in the httpd update.cgi functionality of FreshTomato 2022.5. A specially crafted HTTP request can lead to arbitrary file read. An attacker can send an HTTP request to trigger this vulnerability.

9.8

CVE-2022-42484

Exploit
  • EPSS 0.61%
  • Veröffentlicht 30.01.2023 11:15:09
  • Zuletzt bearbeitet 21.11.2024 07:25:03

An OS command injection vulnerability exists in the httpd logs/view.cgi functionality of FreshTomato 2022.5. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can send an HTTP request to trigger this vulnerability.

9.8

CVE-2022-28664

Exploit
  • EPSS 3.27%
  • Veröffentlicht 05.08.2022 22:15:11
  • Zuletzt bearbeitet 21.11.2024 06:57:40

A memory corruption vulnerability exists in the httpd unescape functionality of FreshTomato 2022.1. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability.The `freshtomato-...

9.8

CVE-2022-28665

Exploit
  • EPSS 3.96%
  • Veröffentlicht 05.08.2022 22:15:11
  • Zuletzt bearbeitet 21.11.2024 06:57:41

A memory corruption vulnerability exists in the httpd unescape functionality of FreshTomato 2022.1. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability.The `freshtomato-...