Filtered by vendor Ds3
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2013-4096 | 1 Ds3 | 1 Authentication Server | 2024-02-04 | 9.0 HIGH | N/A |
ServerAdmin/TestTelnetConnection.jsp in DS3 Authentication Server allows remote authenticated users to execute arbitrary commands via shell metacharacters in the HOST_NAME field. | |||||
CVE-2013-4097 | 1 Ds3 | 1 Authentication Server | 2024-02-04 | 5.0 MEDIUM | N/A |
ServerAdmin/TestDRConnection.jsp in DS3 Authentication Server allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in a -REG-E-OPEN error message. | |||||
CVE-2013-4098 | 1 Ds3 | 1 Authentication Server | 2024-02-04 | 5.0 MEDIUM | N/A |
ServerAdmin/ErrorViewer.jsp in DS3 Authentication Server allow remote attackers to inject arbitrary error-page text via the message parameter. |