Security Vulnerabilities - CVEs Published In October 2021
All versions of yongyou PLM are affected by a command injection issue. UFIDA PLM (Product Life Cycle Management) is a strategic management method. It applies a series of enterprise application systems to support the entire process from conceptual design to the end of product life, and the collaborative creation, distribution, application and management of product information across organizations. Yonyou PLM uses jboss by default, and you can access the management control background without authorization An attacker can use this vulnerability to gain server permissions.
CVSS Score
9.8
EPSS Score
0.028
Published
2021-10-22
ShowDoc 2.8.3 ihas a file upload vulnerability, where attackers can use the vulnerability to obtain server permissions.
CVSS Score
9.8
EPSS Score
0.003
Published
2021-10-22
Cross-Site Scripting (XSS) vulnerability exists in Csdn APP 4.10.0, which can be exploited by attackers to obtain sensitive information such as user cookies.
CVSS Score
6.1
EPSS Score
0.002
Published
2021-10-22
An issue was discovered in OpenPOWER 2.6 firmware. unpack_timestamp() calls le32_to_cpu() for endian conversion of a uint16_t "year" value, resulting in a type mismatch that can truncate a higher integer value to a smaller one, and bypass a timestamp check. The fix is to use the right endian conversion function.
CVSS Score
9.8
EPSS Score
0.002
Published
2021-10-22
Some API functions permit by-design writing or copying data into a given buffer. Since the client controls these parameters, an attacker could rewrite the memory in any location of the affected product.
CVSS Score
9.8
EPSS Score
0.003
Published
2021-10-22
The affected product’s proprietary protocol CSC allows for calling numerous function codes. In order to call those function codes, the user must supply parameters. There is no sanitation on the value of the offset, which allows the client to specify any offset and read out-of-bounds data.
CVSS Score
4.8
EPSS Score
0.002
Published
2021-10-22
Some API functions allow interaction with the registry, which includes reading values as well as data modification.
CVSS Score
9.1
EPSS Score
0.002
Published
2021-10-22
The affected product’s OS Service does not verify any given parameter. A user can supply any type of parameter that will be passed to inner calls without checking the type of the parameter or the value.
CVSS Score
7.3
EPSS Score
0.002
Published
2021-10-22
The server permits communication without any authentication procedure, allowing the attacker to initiate a session with the server without providing any form of authentication.
CVSS Score
9.8
EPSS Score
0.003
Published
2021-10-22
The data of a network capture of the initial handshake phase can be used to authenticate at a SYSDBA level. If a specific .exe is not restarted often, it is possible to access the needed handshake packets between admin/client connections. Using the SYSDBA permission, an attacker can change user passwords or delete the database.
CVSS Score
8.1
EPSS Score
0.002
Published
2021-10-22