CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-45278

Directory Traversal vulnerability in the storage functionality of the API in Yamcs 5.8.6 allows attackers to delete arbitrary files via crafted HTTP DELETE request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.026

EPSS Ranking 85.1%

CVSS Severity

CVSS v3 Score 9.1

References

https://github.com/yamcs/yamcs/compare/yamcs-5.8.6...yamcs-5.8.7
https://www.linkedin.com/pulse/yamcs-vulnerability-assessment-visionspace-technologies
https://github.com/yamcs/yamcs/compare/yamcs-5.8.6...yamcs-5.8.7
https://www.linkedin.com/pulse/yamcs-vulnerability-assessment-visionspace-technologies

Products affected by CVE-2023-45278

Spaceapplications » Yamcs » Version: 5.8.6

cpe:2.3:a:spaceapplications:yamcs:5.8.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-45278

Products

Pricing

Contact Us