Skip to main content

Smart Asset

3 CVEs product

Monthly

CVE-2020-26527 CRITICAL POC Act Now

An issue was discovered in API/api/Version in Damstra Smart Asset 2020.7. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Smart Asset
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2020-26526 MEDIUM This Month

An issue was discovered in Damstra Smart Asset 2020.7. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Smart Asset
NVD GitHub
CVSS 3.1
5.3
EPSS
1.5%
CVE-2020-26525 CRITICAL Act Now

Damstra Smart Asset 2020.7 has SQL injection via the API/api/Asset originator parameter. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Smart Asset
NVD GitHub
CVSS 3.1
9.1
EPSS
25.5%
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

An issue was discovered in API/api/Version in Damstra Smart Asset 2020.7. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Smart Asset
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM This Month

An issue was discovered in Damstra Smart Asset 2020.7. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Smart Asset
NVD GitHub
EPSS 25% CVSS 9.1
CRITICAL Act Now

Damstra Smart Asset 2020.7 has SQL injection via the API/api/Asset originator parameter. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Smart Asset
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy