Skip to main content

Bsa Radar

4 CVEs product

Monthly

CVE-2020-14946 MEDIUM POC This Month

downloadFile.ashx in the Administrator section of the Surveillance module in Global RADAR BSA Radar 1.6.7234.24750 and earlier allows users to download transaction files. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Bsa Radar
NVD GitHub Exploit-DB
CVSS 3.1
4.3
EPSS
7.7%
CVE-2020-14945 HIGH POC THREAT This Week

A privilege escalation vulnerability exists within Global RADAR BSA Radar 1.6.7234.24750 and earlier that allows an authenticated, low-privileged user to escalate their privileges to administrator. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Bsa Radar
NVD GitHub Exploit-DB
CVSS 3.1
8.8
EPSS
11.4%
CVE-2020-14944 CRITICAL POC Act Now

Global RADAR BSA Radar 1.6.7234.24750 and earlier lacks valid authorization controls in multiple functions. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Bsa Radar
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
6.3%
CVE-2020-14943 MEDIUM POC This Month

The Firstname and Lastname parameters in Global RADAR BSA Radar 1.6.7234.24750 and earlier are vulnerable to stored cross-site scripting (XSS) via Update User Profile. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Bsa Radar
NVD GitHub Exploit-DB
CVSS 3.1
5.4
EPSS
3.7%
EPSS 8% CVSS 4.3
MEDIUM POC This Month

downloadFile.ashx in the Administrator section of the Surveillance module in Global RADAR BSA Radar 1.6.7234.24750 and earlier allows users to download transaction files. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Bsa Radar
NVD GitHub Exploit-DB
EPSS 11% CVSS 8.8
HIGH POC THREAT This Week

A privilege escalation vulnerability exists within Global RADAR BSA Radar 1.6.7234.24750 and earlier that allows an authenticated, low-privileged user to escalate their privileges to administrator. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Bsa Radar
NVD GitHub Exploit-DB
EPSS 6% CVSS 9.8
CRITICAL POC Act Now

Global RADAR BSA Radar 1.6.7234.24750 and earlier lacks valid authorization controls in multiple functions. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Bsa Radar
NVD GitHub Exploit-DB
EPSS 4% CVSS 5.4
MEDIUM POC This Month

The Firstname and Lastname parameters in Global RADAR BSA Radar 1.6.7234.24750 and earlier are vulnerable to stored cross-site scripting (XSS) via Update User Profile. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Bsa Radar
NVD GitHub Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy