Hammock Assetview vulnerabilities
3 known vulnerabilities affecting hammock/assetview.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2022-28719P2CRITICALCVSS 9.8fixed in 13.2.02022-04-28
CVE-2022-28719 [CRITICAL] CWE-306 CVE-2022-28719: Missing authentication for critical function in AssetView prior to Ver.13.2.0 allows a remote unauth
Missing authentication for critical function in AssetView prior to Ver.13.2.0 allows a remote unauthenticated attacker with some knowledge on the system configuration to upload a crafted configuration file to the managing server, which may result in the managed clients to execute arbitrary code with the administrative privilege.
nvd
CVE-2017-2241P3MEDIUMCVSS 6.3v9.22017-07-17
CVE-2017-2241 [MEDIUM] CWE-89 CVE-2017-2241: SQL injection vulnerability in the AssetView for MacOS Ver.9.2.0 and earlier versions allows remote
SQL injection vulnerability in the AssetView for MacOS Ver.9.2.0 and earlier versions allows remote attackers to execute arbitrary SQL commands via "File Transfer Web Service".
nvd
CVE-2017-2240P3MEDIUMCVSS 6.5v9.22017-07-17
CVE-2017-2240 [MEDIUM] CWE-22 CVE-2017-2240: Directory traversal vulnerability in AssetView for MacOS Ver.9.2.0 and earlier versions allows remot
Directory traversal vulnerability in AssetView for MacOS Ver.9.2.0 and earlier versions allows remote attackers to read arbitrary files via "File Transfer Web Service".
nvd