Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Rainbowfishsoftware Subscribe
Total 7 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-29165 1 Rainbowfishsoftware 1 Pacsone Server 2021-07-21 7.5 HIGH 9.8 CRITICAL
PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by incorrect access control, which can result in remotely gaining administrator privileges.
CVE-2020-29166 1 Rainbowfishsoftware 1 Pacsone Server 2021-07-21 5.0 MEDIUM 7.5 HIGH
PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by file read/manipulation, which can result in remote information disclosure.
CVE-2020-29163 1 Rainbowfishsoftware 1 Pacsone Server 2021-02-04 6.5 MEDIUM 8.8 HIGH
PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by SQL injection.
CVE-2020-29164 1 Rainbowfishsoftware 1 Pacsone Server 2021-02-04 4.3 MEDIUM 6.1 MEDIUM
PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by cross-site scripting (XSS).
CVE-2020-12715 1 Rainbowfishsoftware 1 Pacsone Server 2020-10-02 6.5 MEDIUM 8.8 HIGH
RainbowFish PacsOne Server 6.8.4 has Incorrect Access Control.
CVE-2020-12870 1 Rainbowfishsoftware 1 Pacsone Server 2020-10-02 7.5 HIGH 9.8 CRITICAL
RainbowFish PacsOne Server 6.8.4 allows SQL injection on the username parameter in the signup page.
CVE-2020-12869 1 Rainbowfishsoftware 1 Pacsone Server 2020-10-02 3.5 LOW 5.4 MEDIUM
RainbowFish PacsOne Server 6.8.4 allows XSS.