Skip to main content
CVE-2015-2996 HIGH POC THREAT Act Now

Multiple directory traversal vulnerabilities in SysAid Help Desk before 15.2 allow remote attackers to (1) read arbitrary files via a .. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 88.2%.

Path Traversal Denial Of Service Sysaid
NVD Exploit-DB
CVSS 2.0
8.5
EPSS
88.2%
Threat
5.8
CVE-2015-2993 HIGH POC THREAT Act Now

SysAid Help Desk before 15.2 does not properly restrict access to certain functionality, which allows remote attackers to (1) create administrator accounts via a crafted request to /createnewaccount. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 77.0%.

Privilege Escalation Sysaid
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
77.0%
Threat
5.3
CVE-2015-3000 HIGH POC THREAT Act Now

SysAid Help Desk before 15.2 allows remote attackers to cause a denial of service (CPU and memory consumption) via a large number of nested entity references in an XML document to (1) /agententry,. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 20.1%.

Denial Of Service Sysaid
NVD Exploit-DB
CVSS 2.0
7.8
EPSS
20.1%
CVE-2015-3905 HIGH POC This Week

Buffer overflow in the set_cs_start function in t1disasm.c in t1utils before 1.39 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service RCE Buffer Overflow Ubuntu Linux T1Utils
NVD GitHub
CVSS 2.0
7.5
EPSS
4.7%
CVE-2014-6284 HIGH POC This Week

SAP Adaptive Server Enterprise (ASE) before 15.7 SP132 and 16.0 before 16.0 SP01 allows remote attackers to bypass the challenge and response mechanism and obtain access to the probe account via a. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation SAP Adaptive Server Enterprise
NVD
CVSS 2.0
7.5
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy