Shodan
Vulnerabilities
Vulnerable Software
Mitre:  >> Caldera  >> 2.3.0  Security Vulnerabilities
CVE-2022-40606
MITRE CALDERA before 4.1.0 allows XSS in the Operations tab and/or Debrief plugin via a crafted operation name, a different vulnerability than CVE-2022-40605.
CVSS Score
6.1
EPSS Score
0.001
Published
2022-10-17
CVE-2022-40605
MITRE CALDERA before 4.1.0 allows XSS in the Operations tab and/or Debrief plugin via a crafted operation name, a different vulnerability than CVE-2022-40606.
CVSS Score
6.1
EPSS Score
0.001
Published
2022-10-17
CVE-2022-41139
MITRE CALDERA 4.1.0 allows stored XSS via app.contact.gist (aka the gist contact configuration field), leading to execution of arbitrary commands on agents.
CVSS Score
5.4
EPSS Score
0.001
Published
2022-10-17
CVE-2021-42558
An issue was discovered in CALDERA 2.8.1. It contains multiple reflected, stored, and self XSS vulnerabilities that may be exploited by authenticated and unauthenticated attackers.
CVSS Score
6.1
EPSS Score
0.016
Published
2022-01-12
CVE-2021-42559
An issue was discovered in CALDERA 2.8.1. It contains multiple startup "requirements" that execute commands when starting the server. Because these commands can be changed via the REST API, an authenticated user can insert arbitrary commands that will execute when the server is restarted.
CVSS Score
8.8
EPSS Score
0.043
Published
2022-01-12
CVE-2021-42561
An issue was discovered in CALDERA 2.8.1. When activated, the Human plugin passes the unsanitized name parameter to a python "os.system" function. This allows attackers to use shell metacharacters (e.g., backticks "``" or dollar parenthesis "$()" ) in order to escape the current command and execute arbitrary shell commands.
CVSS Score
8.8
EPSS Score
0.024
Published
2022-01-12
CVE-2021-42562
An issue was discovered in CALDERA 2.8.1. It does not properly segregate user privileges, resulting in non-admin users having access to read and modify configuration or other components that should only be accessible by admin users.
CVSS Score
8.1
EPSS Score
0.007
Published
2022-01-12
CVE-2020-19907
A command injection vulnerability in the sandcat plugin of Caldera 2.3.1 and earlier allows authenticated attackers to execute any command or service.
CVSS Score
8.8
EPSS Score
0.015
Published
2021-07-12
CVE-2020-10807
auth_svc in Caldera before 2.6.5 allows authentication bypass (for REST API requests) via a forged "localhost" string in the HTTP Host header.
CVSS Score
5.3
EPSS Score
0.003
Published
2020-03-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved