Esst: Security Vulnerabilities
A lack of input sanitizing in the file download feature of eSST Monitoring v2.147.1 allows attackers to execute a path traversal.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-10-17
eSST Monitoring v2.147.1 was discovered to contain a remote code execution (RCE) vulnerability via the Gii code generator component.
CVSS Score
9.8
EPSS Score
0.015
Published
2023-10-17
eSST Monitoring v2.147.1 was discovered to contain a remote code execution (RCE) vulnerability via the file upload function.
CVSS Score
8.8
EPSS Score
0.014
Published
2023-10-17