VYPR
Vendor

Cern

Products
3
CVEs
4
Across products
4
Status
Private

Products

3

Recent CVEs

4
  • CVE-2017-1000203HigNov 17, 2017
    risk 0.58cvss 8.8epss 0.04

    ROOT version 6.9.03 and below is vulnerable to an authenticated shell metacharacter injection in the rootd daemon resulting in remote code execution

  • CVE-2026-29090HigMay 6, 2026
    risk 0.50cvss 8.8epss 0.00

    ### Summary A SQL injection vulnerability exists in Rucio versions 1.30.0 and later before 35.8.5, 38.5.5, 39.4.2, and 40.1.1, in `FilterEngine.create_postgres_query()`. This allows any authenticated Rucio user to execute arbitrary SQL against the PostgreSQL metadata database…

  • CVE-2026-29080HigMay 6, 2026
    risk 0.50cvss 8.8epss 0.00

    A SQL injection vulnerability in `FilterEngine.create_sqla_query()` allows any authenticated Rucio user to execute arbitrary SQL against the backend database through the DID search endpoint (`GET /dids//dids/search`). On Oracle deployments attacker-controlled filter keys…

  • CVE-2000-0079Jan 18, 2000
    risk 0.00cvss epss 0.02

    The W3C CERN httpd HTTP server allows remote attackers to determine the real pathnames of some commands via a request for a nonexistent URL.