Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Smartics Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-2088 1 Smartics 1 Smartics 2022-07-07 6.8 MEDIUM 4.9 MEDIUM
An authenticated user with admin privileges may be able to terminate any process on the system running Elcomplus SmartICS v2.3.4.0.
CVE-2022-2140 1 Smartics 1 Smartics 2022-07-06 6.0 MEDIUM 9.0 CRITICAL
Elcomplus SmartICS v2.3.4.0 does not neutralize user-controllable input, which allows an authenticated user to inject arbitrary code into specific parameters.
CVE-2022-2106 1 Smartics 1 Smartics 2022-07-06 4.0 MEDIUM 2.7 LOW
Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficiently, which enables authenticated administrator-level users to perform path traversal attacks and specify arbitrary files.