Softing edgeAggregator 3.4.0

CPE Details

Softing edgeAggregator 3.4.0
softing
edgeaggregator
3.4.0
2024-02-02
21h20 +00:00
2024-02-02
21h20 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:softing:edgeaggregator:3.4.0:*:*:*:*:*:*:*

Informations

Vendor

softing

Product

edgeaggregator

Version

3.4.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-38126 2023-12-19 21h50 +00:00 Softing edgeAggregator Restore Configuration Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Softing edgeAggregator. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of backup zip files. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this to execute code in the context of root. Was ZDI-CAN-20543.
7.2
Haute
CVE-2022-37453 2022-10-19 22h00 +00:00 An issue was discovered in Softing OPC UA C++ SDK before 6.10. A buffer overflow or an excess allocation happens due to unchecked array and matrix bounds in structure data types.
7.5
Haute