Auvesy Versiondog
17 CVEs affecting Auvesy Versiondog. Latest disclosed: 2021-10-22. Critical: 6, High: 9.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-38449 | Critical | 9.8 | 2021-10-22 | Some API functions permit by-design writing or copying data into a given buffer. Since the client controls these parameters, an attacker could rewrite the memo… |
CVE-2021-38457 | Critical | 9.8 | 2021-10-22 | The server permits communication without any authentication procedure, allowing the attacker to initiate a session with the server without providing any form o… |
CVE-2021-38477 | Critical | 9.8 | 2021-10-22 | There are multiple API function codes that permit reading and writing data to or from files and directories, which could lead to the manipulation and/or the de… |
CVE-2021-38453 | Critical | 9.1 | 2021-10-22 | Some API functions allow interaction with the registry, which includes reading values as well as data modification. |
CVE-2021-38471 | Critical | 9.1 | 2021-10-22 | There are multiple API function codes that permit data writing to any file, which may allow an attacker to modify existing files or create new files. |
CVE-2021-38469 | Critical | 9.1 | 2021-10-22 | Many of the services used by the affected product do not specify full paths for the DLLs they are loading. An attacker can exploit the uncontrolled search path… |
CVE-2021-38461 | High | 8.2 | 2021-10-22 | The affected product uses a hard-coded blowfish key for encryption/decryption processes. The key can be easily extracted from binaries. |
CVE-2021-38459 | High | 8.1 | 2021-10-22 | The data of a network capture of the initial handshake phase can be used to authenticate at a SYSDBA level. If a specific .exe is not restarted often, it is po… |
CVE-2021-38481 | High | 8.1 | 2021-10-22 | The scheduler service running on a specific TCP port enables the user to start and stop jobs. There is no sanitation of the supplied JOB ID provided to the fun… |
CVE-2021-38465 | High | 8.0 | 2021-10-22 | The webinstaller is a Golang web server executable that enables the generation of an Auvesy image agent. Resource consumption can be achieved by generating lar… |
CVE-2021-38473 | High | 8.0 | 2021-10-22 | The affected product’s code base doesn’t properly control arguments for specific functions, which could lead to a stack overflow. |
CVE-2021-38455 | High | 7.3 | 2021-10-22 | The affected product’s OS Service does not verify any given parameter. A user can supply any type of parameter that will be passed to inner calls without check… |
CVE-2021-38463 | High | 7.3 | 2021-10-22 | The affected product does not properly control the allocation of resources. A user may be able to allocate unlimited memory buffers using API functions. |
CVE-2021-38467 | High | 7.3 | 2021-10-22 | A specific function code receives a raw pointer supplied by the user and deallocates this pointer. The user can then control what memory regions will be freed… |
CVE-2021-38475 | High | 7.3 | 2021-10-22 | The database connection to the server is performed by calling a specific API, which could allow an unprivileged user to gain SYSDBA permissions. |
CVE-2021-38479 | Medium | 6.5 | 2021-10-22 | Many API function codes receive raw pointers remotely from the user and trust these pointers as valid in-bound memory regions. An attacker can manipulate API f… |
CVE-2021-38451 | Medium | 4.8 | 2021-10-22 | The affected product’s proprietary protocol CSC allows for calling numerous function codes. In order to call those function codes, the user must supply paramet… |