2 results (0.007 seconds)

CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 1

In Akamai EAA (Enterprise Application Access) Client before 2.3.1, 2.4.x before 2.4.1, and 2.5.x before 2.5.3, an unquoted path may allow an attacker to hijack the flow of execution. En Akamai EAA (Enterprise Application Access) Client versiones anteriores a 2.3.1, versiones 2.4.x anteriores a 2.4.1 y versiones 2.5.x anteriores a 2.5.3, una ruta no citada puede permitir a un atacante secuestrar el flujo de ejecución • https://akamai.com/blog/news/eaa-client-escalation-of-privilege-vulnerability https://www.akamai.com/products/enterprise-application-access • CWE-428: Unquoted Search Path or Element •

CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 0

Enterprise Access Client Auto-Updater allows for Remote Code Execution prior to version 2.0.1. Enterprise Access Client Auto-Updater, permite una ejecución de código remota en versiones anteriores a versión 2.0.1 • https://blogs.akamai.com/2020/08/enterprise-application-access-client-eaa-vulnerability-cve-2019-18847.html https://blogs.akamai.com/sitr • CWE-295: Improper Certificate Validation •