Security Vulnerabilities - CVEs Published In June 2022
An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. The username and password setup for the web interface does not require entering the existing password. A malicious user can change the username and password of the interface.
CVSS Score
6.5
EPSS Score
0.001
Published
2022-06-16
An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. An OS injection vulnerability exists within the web interface, allowing an attacker with valid credentials to execute arbitrary shell commands.
CVSS Score
9.8
EPSS Score
0.008
Published
2022-06-16
CA Clarity 15.8 and below and 15.9.0 contain an insecure XML parsing vulnerability that could allow a remote attacker to potentially view the contents of any file on the system.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-06-16
CA Automic Automation 12.2 and 12.3 contain an authentication error vulnerability in the Automic agent that could allow a remote attacker to potentially execute arbitrary commands.
CVSS Score
9.8
EPSS Score
0.011
Published
2022-06-16
CA Automic Automation 12.2 and 12.3 contain an insecure memory handling vulnerability in the Automic agent that could allow a remote attacker to potentially access sensitive data.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-06-16
CA Automic Automation 12.2 and 12.3 contain an insufficient input validation vulnerability in the Automic agent that could allow a remote attacker to potentially execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.017
Published
2022-06-16
CA Automic Automation 12.2 and 12.3 contain an insecure file creation and handling vulnerability in the Automic agent that could allow a user to potentially elevate privileges.
CVSS Score
8.8
EPSS Score
0.004
Published
2022-06-16
CA Automic Automation 12.2 and 12.3 contain an insufficient input validation vulnerability in the Automic agent that could allow a remote attacker to potentially execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.017
Published
2022-06-16
CA Automic Automation 12.2 and 12.3 contain an insecure input handling vulnerability in the Automic Agent that could allow a remote attacker to potentially enumerate users.
CVSS Score
5.3
EPSS Score
0.002
Published
2022-06-16
CA Automic Automation 12.2 and 12.3 contain an entropy weakness vulnerability in the Automic AutomationEngine that could allow a remote attacker to potentially access sensitive data.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-06-16