Secudos

secudos

5 CVEs • 3 products

Products (3)

Click to collapse

Toggle

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-40361 1Secudos 1Qiata Nov 21, 2024 Oct 20, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 SECUDOS Qiata (DOMOS OS) 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has w...Show more SECUDOS Qiata (DOMOS OS) 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user.Show less
CVE-2020-14294 1Secudos 1Qiata Fta Nov 21, 2024 Oct 2, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board.
CVE-2020-14293 1Secudos 1Domos Nov 21, 2024 Oct 2, 2020 N/A· v4 7.5 HIGH· v3 8.5 HIGH· v2 conf_datetime in Secudos DOMOS 5.8 allows remote attackers to execute arbitrary commands as root via shell metacharacters in the zone field (obtained from the web interface).
CVE-2019-18665 1Secudos 1Domos Nov 21, 2024 Nov 2, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The Log module in SECUDOS DOMOS before 5.6 allows local file inclusion.
CVE-2019-18664 1Secudos 1Domos Nov 21, 2024 Nov 2, 2019 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 The Log module in SECUDOS DOMOS before 5.6 allows XSS.