CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 1CVE-2020-36448
https://notcve.org/view.php?id=CVE-2020-36448
An issue was discovered in the cache crate through 2020-11-24 for Rust. There are unconditional implementations of Send and Sync for Cache<K>. Se ha detectado un problema en la crate cache hasta el 24-11-2020 para Rust. Se presentan implementaciones incondicionales de Send y Sync para la función Cache(K) • https://raw.githubusercontent.com/rustsec/advisory-db/main/crates/cache/RUSTSEC-2020-0128.md https://rustsec.org/advisories/RUSTSEC-2020-0128.html • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0CVE-2004-2684
https://notcve.org/view.php?id=CVE-2004-2684
Unspecified vulnerability in the %template package in InterSystems Cache' 5.0 allows attackers to access certain files on a server, including (1) cache.key and (2) cache.dat, related to .csp files under (a) Dev\studio\templates and (b) Devuser\studio\templates. • http://groups.google.com/group/intersystems-public-cache/browse_thread/thread/7af3237a57e97f14/da52318590c68c75 http://groups.google.com/group/intersystems-public-cache/browse_thread/thread/cda052864061faf7/b1c4ad61ca27c514 •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0CVE-2004-2683
https://notcve.org/view.php?id=CVE-2004-2683
Unspecified vulnerability in the %XML.Utils.SchemaServer class in InterSystems Cache' 5.0 allows attackers to access arbitrary files on a server. • http://groups.google.com/group/intersystems-public-cache/browse_thread/thread/53db65fbb73fc254/37358d45de1cc583 http://groups.google.com/group/intersystems-public-cache/browse_thread/thread/809f96becb84b6da/938000c0f3d48a48 •
CVSS: 10.0EPSS: 0%CPEs: 11EXPL: 0CVE-2003-1333
https://notcve.org/view.php?id=CVE-2003-1333
Unspecified vulnerability in the Cache' Server Page (CSP) implementation in InterSystems Cache' 4.0.3 through 5.0.5 allows remote attackers to "gain complete control" of a server. • http://groups.google.com/group/intersystems-public-cache/browse_thread/thread/8bdc0e496226edd1/60e9179edb4a4d43 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2003-0497 – InterSystems Cache 4.1.15/5.0.x - Insecure Default Permissions
https://notcve.org/view.php?id=CVE-2003-0497
Caché Database 5.x installs /cachesys/bin/cache with world-writable permissions, which allows local users to gain privileges by modifying cache and executing it via cuxs. Cach? Database 5.x instala /cachesys/bin/cache con permisos de escritura global, lo que permite que usuarios locales obtengan privilegios modificando la caché y ejecutándolo mediante cuxs. • https://www.exploit-db.com/exploits/22847 http://www.verisigninc.com/en_US/products-and-services/network-intelligence-availability/idefense/public-vulnerability-reports/articles/index.xhtml?id=7 https://www.intersystems.com/support-learning/support/product-news-alerts/support-alerts-2003 • CWE-264: Permissions, Privileges, and Access Controls •