CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-6578 – Software AG WebMethods access control
https://notcve.org/view.php?id=CVE-2023-6578
07 Dec 2023 — A vulnerability classified as critical has been found in Software AG WebMethods 10.11.x/10.15.x. Affected is an unknown function of the file wm.server/connect/. The manipulation leads to improper access controls. It is possible to launch the attack remotely. To access a file like /assets/ a popup may request username and password. • https://vuldb.com/?ctiid.247158 • CWE-284: Improper Access Control •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2023-0925 – Software AG webMethods OneData Deserialization Vulnerability
https://notcve.org/view.php?id=CVE-2023-0925
06 Sep 2023 — Version 10.11 of webMethods OneData runs an embedded instance of Azul Zulu Java 11.0.15 which hosts a Java RMI registry (listening on TCP port 2099 by default) and two RMI interfaces (listening on a single, dynamically assigned TCP high port). Port 2099 serves as a Java Remote Method Invocation (RMI) registry which allows for remotely loading and processing data via RMI interfaces. An unauthenticated attacker with network connectivity to the RMI registry and RMI interface ports can abuse this functionality ... • https://www.softwareag.com/en_corporate/platform/integration-apis/webmethods-integration.html • CWE-502: Deserialization of Untrusted Data •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39017
https://notcve.org/view.php?id=CVE-2023-39017
28 Jul 2023 — quartz-jobs 2.3.2 and below was discovered to contain a code injection vulnerability in the component org.quartz.jobs.ee.jms.SendQueueMessageJob.execute. This vulnerability is exploited via passing an unchecked argument. NOTE: this is disputed by multiple parties because it is not plausible that untrusted user input would reach the code location where injection must occur. Se ha descubierto que Quartz-jobs v2.3.2 e inferiores contienen una vulnerabilidad de inyección de código en el componente "org.quartz.j... • https://github.com/quartz-scheduler/quartz/issues/943 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-40650
https://notcve.org/view.php?id=CVE-2021-40650
14 Jun 2022 — In Connx Version 6.2.0.1269 (20210623), a cookie can be issued by the application and not have the secure flag set. En Connx Versión 6.2.0.1269 (20210623), una cookie puede ser emitida por la aplicación y no tener el flag seguro establecido • https://github.com/l00neyhacker/CVE-2021-40650 • CWE-311: Missing Encryption of Sensitive Data •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-40649
https://notcve.org/view.php?id=CVE-2021-40649
14 Jun 2022 — In Connx Version 6.2.0.1269 (20210623), a cookie can be issued by the application and not have the HttpOnly flag set. En Connx Versión 6.2.0.1269 (20210623), una cookie puede ser emitida por la aplicación y no tener el flag HttpOnly establecido • https://github.com/l00neyhacker/CVE-2021-40649 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-33207
https://notcve.org/view.php?id=CVE-2021-33207
05 Apr 2022 — The HTTP client in MashZone NextGen through 10.7 GA deserializes untrusted data when it gets an HTTP response with a 570 status code. El cliente HTTP en MashZone NextGen versiones hasta 10.7, GA deserializa datos no confiables cuando consigue una respuesta HTTP con un código de estado 570 • https://github.com/blackarrowsec/advisories/tree/master/2021/CVE-2021-33207 • CWE-502: Deserialization of Untrusted Data •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2021-33523
https://notcve.org/view.php?id=CVE-2021-33523
30 Mar 2022 — MashZone NextGen through 10.7 GA allows a remote authenticated user, with access to the admin console, to upload a new JDBC driver that can execute arbitrary commands on the underlying host. This occurs in com.idsscheer.ppmmashup.business.jdbc.DriverUploadController. MashZone NextGen versiones hasta 10.7 GA, permite a un usuario remoto autenticado, con acceso a la consola de administración, cargar un nuevo controlador JDBC que puede ejecutar comandos arbitrarios en el host subyacente. Esto ocurre en com.ids... • https://github.com/blackarrowsec/advisories/tree/master/2021/CVE-2021-33523 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2021-33208
https://notcve.org/view.php?id=CVE-2021-33208
30 Mar 2022 — The "Register an Ehcache Configuration File" admin feature in MashZone NextGen through 10.7 GA allows XXE attacks via a malicious XML configuration file. La funcionalidad de administración "Register an Ehcache Configuration File" en MashZone NextGen versiones hasta 10.7 GA, permite realizar ataques de tipo XXE por medio de un archivo de configuración XML malicioso • https://github.com/blackarrowsec/advisories/tree/master/2021/CVE-2021-33208 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2021-33581
https://notcve.org/view.php?id=CVE-2021-33581
30 Mar 2022 — MashZone NextGen through 10.7 GA has an SSRF vulnerability that allows an attacker to interact with arbitrary TCP services, by abusing the feature to check the availability of a PPM connection. This occurs in com.idsscheer.ppmmashup.web.webservice.impl.ZPrestoAdminWebService. MashZone NextGen versiones hasta 10.7 GA, presenta una vulnerabilidad de tipo SSRF que permite a un atacante interactuar con servicios TCP arbitrarios, al abusar de la función para comprobar la disponibilidad de una conexión PPM. Esto ... • https://github.com/blackarrowsec/advisories/tree/master/2021/CVE-2021-33581 • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 10.0EPSS: 2%CPEs: 1EXPL: 0CVE-2020-35469
https://notcve.org/view.php?id=CVE-2020-35469
15 Dec 2020 — The Software AG Terracotta Server OSS Docker image 5.4.1 contains a blank password for the root user. Systems deployed using affected versions of the Terracotta Server OSS container may allow a remote attacker to achieve root access with a blank password. La imagen de Docker de Software AG Terracotta Server OSS versión 5.4.1, contiene una contraseña en blanco para el usuario root. Los sistemas implementados con versiones afectadas del contenedor Terracotta Server OSS pueden permitir a un atacante remot... • https://github.com/donghyunlee00/CVE/blob/main/CVE-2020-35469 • CWE-306: Missing Authentication for Critical Function •