English
Français
Light
Dark
System

Alert System

Stay informed at all times
Create an account Open a free account Login Manage your alerts

ILIAS 5.3.23

CPE Details

ILIAS 5.3.23
ilias
ilias
5.3.23
2021-05-19 18:39 +00:00
2021-05-19 19:50 +00:00
CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.
Alert management

CPE Name: cpe:2.3:a:ilias:ilias:5.3.23:*:*:*:*:*:*:*

Informations

Vendor

ilias

Product

ilias

Version

5.3.23

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-36485 2023-12-24 23:00 +00:00 The workflow-engine of ILIAS before 7.23 and 8 before 8.3 allows remote authenticated users to run arbitrary system commands on the application server as the application user via a malicious BPMN2 workflow definition file.
7.2
HIGH
CVE-2023-36486 2023-12-24 23:00 +00:00 The workflow-engine of ILIAS before 7.23 and 8 before 8.3 allows remote authenticated users to run arbitrary system commands on the application server as the application user by uploading a workflow definition file with a malicious filename.
7.2
HIGH
CVE-2022-45915 2022-12-06 23:00 +00:00 ILIAS before 7.16 allows OS Command Injection.
8.8
HIGH
CVE-2022-45916 2022-12-06 23:00 +00:00 ILIAS before 7.16 allows XSS.
5.4
MEDIUM
CVE-2022-45917 2022-12-06 23:00 +00:00 ILIAS before 7.16 has an Open Redirect.
6.1
MEDIUM
CVE-2022-45918 2022-12-06 23:00 +00:00 ILIAS before 7.16 allows External Control of File Name or Path.
6.5
MEDIUM
CVE-2022-31266 2022-06-28 22:46 +00:00 In ILIAS through 7.10, lack of verification when changing an email address (on the Profile Page) allows remote attackers to take over accounts.
9.8
CRITICAL

More information
Click on the button to the left (OFF), to authorize the inscription of cookie improving the functionalities of the site. Click on the button to the left (Accept all), to unauthorize the inscription of cookie improving the functionalities of the site.