Saltos
Products
2- 7 CVEs
- 3 CVEs
Recent CVEs
10| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-18761 | Cri | 0.68 | 9.8 | 0.16 | Nov 16, 2018 | SaltOS 3.1 r8126 allows action=login&querystring=&user=[SQL] SQL Injection. | ||
| CVE-2018-18763 | Cri | 0.67 | 9.8 | 0.03 | Nov 16, 2018 | SaltOS 3.1 r8126 allows action=ajax&query=numbers&page=usuarios&action2=[SQL] SQL Injection. | ||
| CVE-2024-5407 | Cri | 0.65 | 10.0 | 0.01 | May 27, 2024 | A vulnerability in RhinOS 3.0-1190 could allow PHP code injection through the "search" parameter in /portal/search.htm. This vulnerability could allow a remote attacker to perform a reverse shell on the remote system, compromising the entire infrastructure. | ||
| CVE-2019-19459 | Cri | 0.64 | 9.8 | 0.04 | Dec 3, 2019 | An issue was discovered in SALTO ProAccess SPACE 5.4.3.0. An attacker can write arbitrary content to arbitrary files, as demonstrated by CVE-2019-19458 files under the web root, or .bat files that will be used with auto start. This allows an attacker to execute arbitrary… | ||
| CVE-2019-19458 | Hig | 0.56 | 8.6 | 0.03 | Dec 3, 2019 | SALTO ProAccess SPACE 5.4.3.0 allows Directory Traversal in the Data Export feature. | ||
| CVE-2024-5409 | Hig | 0.46 | 7.1 | 0.00 | May 27, 2024 | RhinOS 3.0-1190 is vulnerable to an XSS via the "tamper" parameter in /admin/lib/phpthumb/phpthumb.php. An attacker could create a malicious URL and send it to a victim to obtain their session details. | ||
| CVE-2024-5408 | Hig | 0.46 | 7.1 | 0.00 | May 27, 2024 | Vulnerability in RhinOS 3.0-1190 consisting of an XSS through the "search" parameter of /portal/search.htm. This vulnerability could allow a remote attacker to steal details of a victim's user session by submitting a specially crafted URL. | ||
| CVE-2018-18762 | Med | 0.46 | 6.5 | 0.06 | Mar 21, 2019 | SaltOS 3.1 r8126 contains a database download vulnerability. | ||
| CVE-2019-19460 | Med | 0.36 | 5.5 | 0.00 | Dec 3, 2019 | An issue was discovered in SALTO ProAccess SPACE 5.4.3.0. The product's webserver runs as a Windows service with local SYSTEM permissions by default. This is against the principle of least privilege. An attacker who is able to exploit CVE-2019-19458 or CVE-2019-19459 is… | ||
| CVE-2019-19457 | Med | 0.35 | 5.4 | 0.01 | Dec 3, 2019 | SALTO ProAccess SPACE 5.4.3.0 allows XSS. |
- risk 0.68cvss 9.8epss 0.16
SaltOS 3.1 r8126 allows action=login&querystring=&user=[SQL] SQL Injection.
- risk 0.67cvss 9.8epss 0.03
SaltOS 3.1 r8126 allows action=ajax&query=numbers&page=usuarios&action2=[SQL] SQL Injection.
- risk 0.65cvss 10.0epss 0.01
A vulnerability in RhinOS 3.0-1190 could allow PHP code injection through the "search" parameter in /portal/search.htm. This vulnerability could allow a remote attacker to perform a reverse shell on the remote system, compromising the entire infrastructure.
- risk 0.64cvss 9.8epss 0.04
An issue was discovered in SALTO ProAccess SPACE 5.4.3.0. An attacker can write arbitrary content to arbitrary files, as demonstrated by CVE-2019-19458 files under the web root, or .bat files that will be used with auto start. This allows an attacker to execute arbitrary…
- risk 0.56cvss 8.6epss 0.03
SALTO ProAccess SPACE 5.4.3.0 allows Directory Traversal in the Data Export feature.
- risk 0.46cvss 7.1epss 0.00
RhinOS 3.0-1190 is vulnerable to an XSS via the "tamper" parameter in /admin/lib/phpthumb/phpthumb.php. An attacker could create a malicious URL and send it to a victim to obtain their session details.
- risk 0.46cvss 7.1epss 0.00
Vulnerability in RhinOS 3.0-1190 consisting of an XSS through the "search" parameter of /portal/search.htm. This vulnerability could allow a remote attacker to steal details of a victim's user session by submitting a specially crafted URL.
- risk 0.46cvss 6.5epss 0.06
SaltOS 3.1 r8126 contains a database download vulnerability.
- risk 0.36cvss 5.5epss 0.00
An issue was discovered in SALTO ProAccess SPACE 5.4.3.0. The product's webserver runs as a Windows service with local SYSTEM permissions by default. This is against the principle of least privilege. An attacker who is able to exploit CVE-2019-19458 or CVE-2019-19459 is…
- risk 0.35cvss 5.4epss 0.01
SALTO ProAccess SPACE 5.4.3.0 allows XSS.