Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

fit2cloud cloudexplorer lite vulnerabilities and exploits

(subscribe to this query)
9.8
CVSSv3
CVE-2023-44397
CloudExplorer Lite is an open source, lightweight cloud management platform. Prior to version 1.4.1, the gateway filter of CloudExplorer Lite uses a controller with path starting with `matching/API/`, which can cause a permission bypass. Version 1.4.1 contains a patch for this is...
Fit2cloud Cloudexplorer Lite
9.8
CVSSv3
CVE-2023-38692
CloudExplorer Lite is an open source, lightweight cloud management platform. Versions before 1.3.1 contain a command injection vulnerability in the installation function in module management. The vulnerability has been fixed in v1.3.1. There are no known workarounds aside from up...
Fit2cloud Cloudexplorer Lite
9.8
CVSSv3
CVE-2023-34240
Cloudexplorer-lite is an open source cloud software stack. Weak passwords can be easily guessed and are an easy target for brute force attacks. This can lead to an authentication system failure and compromise system security. Versions of cloudexplorer-lite before 1.2.0 did not en...
Fit2cloud Cloudexplorer Lite
8.8
CVSSv3
CVE-2023-3423
Weak Password Requirements in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v 1.2.0.
Fit2cloud Cloudexplorer Lite
8.1
CVSSv3
CVE-2023-2845
Improper Access Control in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v1.1.0.
Fit2cloud Cloudexplorer Lite
7.8
CVSSv3
CVE-2023-50612
Insecure Permissions vulnerability in fit2cloud Cloud Explorer Lite version 1.4.1, allow local malicious users to escalate privileges and obtain sensitive information via the cloud accounts parameter.
Fit2cloud Cloudexplorer Lite 1.4.1
7.5
CVSSv3
CVE-2023-42147
An issue in CloudExplorer Lite 1.3.1 allows an malicious user to obtain sensitive information via the login key component.
Fit2cloud Cloudexplorer Lite 1.3.1
4.9
CVSSv3
CVE-2023-39519
Cloud Explorer Lite is an open source cloud management platform. Prior to version 1.4.0, there is a risk of sensitive information leakage in the user information acquisition of CloudExplorer Lite. The vulnerability has been fixed in version 1.4.0.
Fit2cloud Cloudexplorer Lite
4.9
CVSSv3
CVE-2023-2844
Authorization Bypass Through User-Controlled Key in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v1.1.0.
Fit2cloud Cloudexplorer Lite
4.3
CVSSv3
CVE-2023-32311
CloudExplorer Lite is an open source cloud management platform. In CloudExplorer Lite prior to version 1.1.0 users organization/workspace permissions are not properly checked. This allows users to add themselves to any organization. This vulnerability has been fixed in v1.1.0. Us...
Fit2cloud Cloudexplorer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook