Smeup: >> Erp >> tokyo_v6r1m220406 Security Vulnerabilities
Sme.UP TOKYO V6R1M220406 was discovered to contain an arbitrary file download vulnerabilty via the component /ResourceService.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-02-27
Sme.UP ERP TOKYO V6R1M220406 was discovered to contain an OS command injection vulnerability via calls made to the XMService component.
CVSS Score
8.8
EPSS Score
0.012
Published
2023-02-27
Sme.UP ERP TOKYO V6R1M220406 was discovered to contain an information disclosure vulnerability via the /debug endpoint. This vulnerability allows attackers to access cleartext credentials needed to authenticate to the AS400 system.
CVSS Score
7.5
EPSS Score
0.0
Published
2023-02-27
Sme.UP ERP TOKYO V6R1M220406 was discovered to contain an arbitrary file upload vulnerability.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-02-27