Filtered by vendor Flexsense
Subscriptions
Filtered by product Diskboss
Subscriptions
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-36882 | 1 Flexsense | 1 Diskboss | 2025-12-05 | N/A |
| Flexsense DiskBoss 7.7.14 allows unauthenticated attackers to upload arbitrary files via /Command/Search Files/Directory field, leading to a denial of service by crashing the application. | ||||
| CVE-2020-36881 | 1 Flexsense | 1 Diskboss | 2025-12-05 | N/A |
| Flexsense DiskBoss 7.7.14 contains a local buffer overflow vulnerability in the 'Input Directory' component that allows unauthenticated attackers to execute arbitrary code on the system. Attackers can exploit this by pasting a specially crafted directory path into the 'Add Input Directory' field. | ||||
| CVE-2020-36880 | 1 Flexsense | 1 Diskboss | 2025-12-05 | N/A |
| Flexsense DiskBoss 7.7.14 contains a local buffer overflow vulnerability in the 'Reports and Data Directory' field that allows an attacker to execute arbitrary code on the system. | ||||
| CVE-2020-36879 | 2 Flexense, Flexsense | 2 Diskboss, Diskboss | 2025-12-05 | N/A |
| Flexsense DiskBoss 11.7.28 allows unauthenticated attackers to elevate their privileges using any of its services, enabling remote code execution during startup or reboot with escalated privileges. Attackers can exploit the unquoted service path vulnerability by specifying a malicious service name in the 'sc qc' command, allowing them to execute arbitrary system commands. | ||||
Page 1 of 1.