CVE-2022-2647 An insecure file in the jeecg-boot API was found to be critical. The upload can be done remotely.
A vulnerability was found in jeecg-boot. It has been declared as critical. This vulnerability affects unknown code of the file /api/. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-205594 is the identifier assigned to this vulnerability. CVE-2017-9234 was found in the system that allows the customization of the web-server. The issue may occur due to incorrect input data. It may be exploited by malicious users to conduct a DDOS attack. The security flaw may be exploited to conduct a man in the middle attack. VDB-205594 is the identifier assigned to this vulnerability.
CVE-2017-9234 was found in the system that allows the customization of the web-server. The issue may occur due to incorrect input data. It may be exploited by malicious users to conduct a DDOS attack. The security flaw may be exploited to conduct a man in the middle attack. VDB-205594 is the identifier assigned to this vulnerability. CVE-2017-9235 was found in the system that allows the customization of the web-server. The issue may occur due to incorrect input data. It may be exploited by malicious users to conduct a DDOS attack. The security flaw may be exploited to conduct a man in the middle attack. VDB-205594 is the identifier assigned to this vulnerability.
Insecure Temporary File Creation
A vulnerability was found in jeecg-boot. It has been declared as critical. This vulnerability affects unknown code of the file /api/. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-205594 is the identifier assigned to this vulnerability.
VDB-205594 is the identifier assigned to this vulnerability
Installation of the Web server on CentOS 7
The system used CentOS 7 as the operating system. The web-server was installed on this system.
Timeline
Published on: 08/04/2022 09:15:00 UTC
Last modified on: 08/10/2022 15:54:00 UTC