Skip to main content

Sensor Management Server

2 CVEs product

Monthly

CVE-2022-38130 CRITICAL POC THREAT Act Now

The com.keysight.tentacle.config.ResourceManager.smsRestoreDatabaseZip() method is used to restore the HSQLDB database used in SMS. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Sensor Management Server
NVD
CVSS 3.1
9.8
EPSS
53.4%
CVE-2022-38129 CRITICAL POC THREAT Act Now

A path traversal vulnerability exists in the com.keysight.tentacle.licensing.LicenseManager.addLicenseFile() method in the Keysight Sensor Management Server (SMS). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Sensor Management Server
NVD
CVSS 3.1
9.8
EPSS
18.4%
EPSS 53% CVSS 9.8
CRITICAL POC THREAT Act Now

The com.keysight.tentacle.config.ResourceManager.smsRestoreDatabaseZip() method is used to restore the HSQLDB database used in SMS. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Sensor Management Server
NVD
EPSS 18% CVSS 9.8
CRITICAL POC THREAT Act Now

A path traversal vulnerability exists in the com.keysight.tentacle.licensing.LicenseManager.addLicenseFile() method in the Keysight Sensor Management Server (SMS). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Sensor Management Server
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy