Adbglobal: >> Epicentro >> 7.3.2 Security Vulnerabilities
Code injection in the /ui/login form Language parameter in Epicentro E_7.3.2+ allows attackers to execute JavaScript code by making a user issue a manipulated POST request.
CVSS Score
9.8
EPSS Score
0.005
Published
2018-10-09
Buffer Overflow in httpd in EpiCentro E_7.3.2+ allows attackers to execute code remotely via a specially crafted GET request without a leading "/" and without authentication.
CVSS Score
9.8
EPSS Score
0.01
Published
2018-10-09
Buffer Overflow in httpd in EpiCentro E_7.3.2+ allows attackers to cause a denial of service attack remotely via a specially crafted GET request with a leading "/" in the URL.
CVSS Score
7.5
EPSS Score
0.003
Published
2018-10-09