Vendor
Opendap
Products
3
CVEs
3
Across products
5
Status
Private
Products
3- 2 CVEs
- 2 CVEs
- 1 CVE
Recent CVEs
3| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2007-2767 | 0.00 | — | 0.01 | May 21, 2007 | Unspecified vulnerability in BES before 3.5.0 in OPeNDAP 4 (Hydrax) before 1.2.1 allows remote attackers to list filesystem contents and obtain sensitive information via unknown vectors. | ||
| CVE-2007-2769 | 0.00 | — | 0.01 | May 21, 2007 | BES before 3.5.0 in OPeNDAP 4 (Hydrax) before 1.2.1 does not properly handle compressed files, which allows remote attackers to upload arbitrary files or execute arbitrary commands via a crafted compressed file. | ||
| CVE-2007-2355 | 0.00 | — | 0.06 | Apr 30, 2007 | The get_url function in DODS_Dispatch.pm for the CGI_server in OPeNDAP 3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL. |
- CVE-2007-2767May 21, 2007risk 0.00cvss —epss 0.01
Unspecified vulnerability in BES before 3.5.0 in OPeNDAP 4 (Hydrax) before 1.2.1 allows remote attackers to list filesystem contents and obtain sensitive information via unknown vectors.
- CVE-2007-2769May 21, 2007risk 0.00cvss —epss 0.01
BES before 3.5.0 in OPeNDAP 4 (Hydrax) before 1.2.1 does not properly handle compressed files, which allows remote attackers to upload arbitrary files or execute arbitrary commands via a crafted compressed file.
- CVE-2007-2355Apr 30, 2007risk 0.00cvss —epss 0.06
The get_url function in DODS_Dispatch.pm for the CGI_server in OPeNDAP 3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.