← Back

Cloud

cloud

Vendor: Jedox • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-47875
1Jedox
2Cloud
Jedox
Jan 30, 2025
May 2, 2023
N/A· v4
8.8 HIGH· v3
N/A· v2
A Directory Traversal vulnerability in /be/erpc.php in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to execute arbitrary code.
CVE-2022-47874
1Jedox
2Cloud
Jedox
Jan 30, 2025
May 2, 2023
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Improper Access Control in /tc/rpc in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to view details of database connections via class 'com.jedox.etl.mngr.Connections' and method 'getGlobalConnection'.