RSS   Vulnerabilities for 'Bdr suite'   RSS

2022-04-04
 
CVE-2021-43458

CWE-428
 

 
An Unquoted Service Path vulnerability exits in Vembu BDR 4.2.0.1 via a specially crafted file in the (1) hsflowd, (2) VembuBDR360Agent, or (3) VembuOffice365Agent service paths.

 
2021-06-08
 
CVE-2021-26471

NVD-CWE-noinfo
 

 
Vembu BDR Suite before 4.2.0 allows Unauthenticated Remote Code Execution by placing a command in a GET request (issue 1 of 2).

 
 
CVE-2021-26472

NVD-CWE-noinfo
 

 
Vembu BDR Suite before 4.2.0 allows Unauthenticated Remote Code Execution by placing a command in a GET request (issue 2 of 2).

 
 
CVE-2021-26473

CWE-434
 

 
Vembu BDR Suite before 4.2.0 allows Unauthenticated file write via a GET request that specifies a file's name and content.

 
 
CVE-2021-26474

CWE-918
 

 
Vembu BDR Suite before 4.2.0 allows Unauthenticated SSRF via a GET request that specifies a hostname and port number.

 

 >>> Vendor: Vembu 3 Products
Storegrid
Bdr suite
Offsite dr


Copyright 2024, cxsecurity.com

 

Back to Top