Newforma

Project Center

14 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.9

CVE-2025-35061

  • EPSS 0.03%
  • Veröffentlicht 09.10.2025 20:22:37
  • Zuletzt bearbeitet 22.10.2025 16:51:13

Newforma Info Exchange (NIX) '/NPCSRemoteWeb/LegacyIntegrationServices.asmx' allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the user-confi...

9.8

CVE-2025-35062

  • EPSS 0.1%
  • Veröffentlicht 09.10.2025 20:22:23
  • Zuletzt bearbeitet 22.10.2025 16:51:37

Newforma Info Exchange (NIX) before version 2023.1 by default allows anonymous authentication which allows an unauthenticated attacker to exploit additional vulnerabilities that require authentication.

5.4

CVE-2025-35060

  • EPSS 0.03%
  • Veröffentlicht 09.10.2025 20:22:10
  • Zuletzt bearbeitet 22.10.2025 16:47:57

Newforma Info Exchange (NIX) provides a 'Send a File Transfer' feature that allows a remote, authenticated attacker to upload SVG files that contain JavaScript or other content that may be executed or rendered by a web browser using a mobile user age...

6.1

CVE-2025-35059

  • EPSS 0.02%
  • Veröffentlicht 09.10.2025 20:21:56
  • Zuletzt bearbeitet 22.10.2025 16:50:57

Newforma Info Exchange (NIX) '/DownloadWeb/hyperlinkredirect.aspx' provides an unauthenticated URL redirect via the 'nhl' parameter.

5.9

CVE-2025-35058

  • EPSS 0.03%
  • Veröffentlicht 09.10.2025 20:21:43
  • Zuletzt bearbeitet 22.10.2025 16:51:24

Newforma Info Exchange (NIX) '/UserWeb/Common/MarkupServices.ashx' allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the customer-configured ...

6

CVE-2025-35057

  • EPSS 0.03%
  • Veröffentlicht 09.10.2025 20:21:29
  • Zuletzt bearbeitet 22.10.2025 15:12:44

Newforma Info Exchange (NIX) '/RemoteWeb/IntegrationServices.ashx' allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the NIX service account.

5

CVE-2025-35056

  • EPSS 0.04%
  • Veröffentlicht 09.10.2025 20:21:10
  • Zuletzt bearbeitet 22.10.2025 15:16:36

Newforma Info Exchange (NIX) '/UserWeb/Common/MarkupServices.ashx' 'StreamStampImage' accepts an encrypted file path and returns an image of the specified file. An authenticated attacker can read arbitrary files subject to the privileges of NIX, typi...

8.8

CVE-2025-35055

  • EPSS 0.1%
  • Veröffentlicht 09.10.2025 20:20:56
  • Zuletzt bearbeitet 22.10.2025 15:17:05

Newforma Info Exchange (NIX) '/UserWeb/Common/UploadBlueimp.ashx' allows an authenticated attacker to upload an arbitrary file to any location writable by the NIX application. An attacker can upload and run a web shell or other content executable by ...

5.3

CVE-2025-35054

  • EPSS 0.01%
  • Veröffentlicht 09.10.2025 20:20:40
  • Zuletzt bearbeitet 22.10.2025 15:18:27

Newforma Info Exchange (NIX) stores credentials used to configure NPCS in 'HKLM\Software\WOW6432Node\Newforma\<version>\Credentials'. The credentials are encrypted but the encryption key is stored in the same registry location. Authenticated users c...

6.4

CVE-2025-35053

  • EPSS 0.03%
  • Veröffentlicht 09.10.2025 20:20:18
  • Zuletzt bearbeitet 22.10.2025 16:09:44

Newforma Info Exchange (NIX) accepts requests to '/UserWeb/Common/MarkupServices.ashx' specifying the 'DownloadExportedPDF' command that allow an authenticated user to read and delete arbitrary files with 'NT AUTHORITY\NetworkService' privileges. In...