CVSS: 8.5EPSS: 0%CPEs: 2EXPL: 0CVE-2024-6619 – Incorrect Permission Assignment for Critical Resource in Ocean Data Systems Dream Report
https://notcve.org/view.php?id=CVE-2024-6619
13 Aug 2024 — In Ocean Data Systems Dream Report, an incorrect permission vulnerability could allow a local unprivileged attacker to escalate their privileges and could cause a denial-of-service. • https://www.cisa.gov/news-events/ics-advisories/icsa-24-226-08 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-6618 – Path Traversal in Ocean Data Systems Dream Report
https://notcve.org/view.php?id=CVE-2024-6618
13 Aug 2024 — In Ocean Data Systems Dream Report, a path traversal vulnerability could allow an attacker to perform remote code execution through the injection of a malicious dynamic-link library (DLL). • https://www.cisa.gov/news-events/ics-advisories/icsa-24-226-08 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •