Количество 2
Количество 2
CVE-2019-7669
Prima Systems FlexAir, Versions 2.3.38 and prior. Improper validation of file extensions when uploading files could allow a remote authenticated attacker to upload and execute malicious applications within the application’s web root with root privileges.
GHSA-xjxr-9f3w-9hc2
Prima Systems FlexAir devices allow Unauthenticated Command Injection resulting in Root Remote Code Execution.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-7669 Prima Systems FlexAir, Versions 2.3.38 and prior. Improper validation of file extensions when uploading files could allow a remote authenticated attacker to upload and execute malicious applications within the application’s web root with root privileges. | CVSS3: 8.8 | 40% Средний | больше 6 лет назад |
| GHSA-xjxr-9f3w-9hc2 Prima Systems FlexAir devices allow Unauthenticated Command Injection resulting in Root Remote Code Execution. | CVSS3: 8.8 | 40% Средний | больше 3 лет назад |
Уязвимостей на страницу