Filtered by vendor Jedox
Subscriptions
Filtered by product Jedox
Subscriptions
Total
7 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-47880 | 1 Jedox | 2 Jedox, Jedox Cloud | 2024-11-21 | 5.3 Medium |
An Information disclosure vulnerability in /be/rpc.php in Jedox GmbH Jedox 2020.2.5 allow remote, authenticated users with permissions to modify database connections to disclose a connections' cleartext password via the 'test connection' function. | ||||
CVE-2022-47879 | 1 Jedox | 2 Jedox, Jedox Cloud | 2024-11-21 | 7.5 High |
A Remote Code Execution (RCE) vulnerability in /be/rpc.php in Jedox 2020.2.5 allows remote authenticated users to load arbitrary PHP classes from the 'rtn' directory and execute its methods. | ||||
CVE-2022-47878 | 1 Jedox | 1 Jedox | 2024-11-21 | 8.8 High |
Incorrect input validation for the default-storage-path in the settings page in Jedox 2020.2.5 allows remote, authenticated users to specify the location as Webroot directory. Consecutive file uploads can lead to the execution of arbitrary code. | ||||
CVE-2022-47877 | 1 Jedox | 1 Jedox | 2024-11-21 | 5.4 Medium |
A Stored cross-site scripting vulnerability in Jedox 2020.2.5 allows remote, authenticated users to inject arbitrary web script or HTML in the Logs page via the log module 'log'. | ||||
CVE-2022-47876 | 1 Jedox | 1 Jedox | 2024-11-21 | 8.8 High |
The integrator in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to create Jobs to execute arbitrary code via Groovy-scripts. | ||||
CVE-2022-47875 | 1 Jedox | 2 Cloud, Jedox | 2024-11-21 | 8.8 High |
A Directory Traversal vulnerability in /be/erpc.php in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to execute arbitrary code. | ||||
CVE-2022-47874 | 1 Jedox | 2 Cloud, Jedox | 2024-11-21 | 6.5 Medium |
Improper Access Control in /tc/rpc in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to view details of database connections via class 'com.jedox.etl.mngr.Connections' and method 'getGlobalConnection'. |
Page 1 of 1.