Skip to main content

Yamcs

5 CVEs product

Monthly

CVE-2023-45280 Maven MEDIUM POC PATCH This Month

Yamcs 5.8.6 allows XSS (issue 2 of 2). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Yamcs
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2023-45279 Maven MEDIUM POC PATCH This Month

Yamcs 5.8.6 allows XSS (issue 1 of 2). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Yamcs
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-45281 MEDIUM POC This Month

An issue in Yamcs 5.8.6 allows attackers to obtain the session cookie via upload of crafted HTML file. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Yamcs
NVD
CVSS 3.1
6.1
EPSS
0.4%
CVE-2023-45278 Maven CRITICAL POC PATCH Act Now

Directory Traversal vulnerability in the storage functionality of the API in Yamcs 5.8.6 allows attackers to delete arbitrary files via crafted HTTP DELETE request. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Yamcs
NVD GitHub
CVSS 3.1
9.1
EPSS
1.6%
CVE-2023-45277 Maven HIGH POC PATCH This Week

Yamcs 5.8.6 is vulnerable to directory traversal (issue 1 of 2). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Yamcs
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
EPSS 1% CVSS 5.4
MEDIUM POC PATCH This Month

Yamcs 5.8.6 allows XSS (issue 2 of 2). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Yamcs
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM POC PATCH This Month

Yamcs 5.8.6 allows XSS (issue 1 of 2). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Yamcs
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM POC This Month

An issue in Yamcs 5.8.6 allows attackers to obtain the session cookie via upload of crafted HTML file. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Yamcs
NVD
EPSS 2% CVSS 9.1
CRITICAL POC PATCH Act Now

Directory Traversal vulnerability in the storage functionality of the API in Yamcs 5.8.6 allows attackers to delete arbitrary files via crafted HTTP DELETE request. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Yamcs
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

Yamcs 5.8.6 is vulnerable to directory traversal (issue 1 of 2). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Path Traversal Yamcs
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy