Vulnerabilities > Fit2Cloud
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-27 | CVE-2023-42819 | Path Traversal vulnerability in Fit2Cloud Jumpserver JumpServer is an open source bastion host. | 8.8 |
| 2023-09-27 | CVE-2023-42820 | Unspecified vulnerability in Fit2Cloud Jumpserver JumpServer is an open source bastion host. | 8.2 |
| 2023-09-20 | CVE-2023-42147 | Cleartext Transmission of Sensitive Information vulnerability in Fit2Cloud Cloudexplorer Lite 1.3.1 An issue in CloudExplorer Lite 1.3.1 allows an attacker to obtain sensitive information via the login key component. | 7.5 |
| 2023-09-15 | CVE-2023-42442 | Improper Authentication vulnerability in Fit2Cloud Jumpserver JumpServer is an open source bastion host and a professional operation and maintenance security audit system. | 5.3 |
| 2023-09-14 | CVE-2023-42405 | SQL Injection vulnerability in Fit2Cloud Rackshift 1.7.1 SQL injection vulnerability in FIT2CLOUD RackShift v1.7.1 allows attackers to execute arbitrary code via the `sort` parameter to taskService.list(), bareMetalService.list(), and switchService.list(). | 9.8 |
| 2023-08-24 | CVE-2023-39519 | Information Exposure vulnerability in Fit2Cloud Cloudexplorer Lite Cloud Explorer Lite is an open source cloud management platform. | 4.9 |
| 2023-08-10 | CVE-2023-39964 | Path Traversal vulnerability in Fit2Cloud 1Panel 1.4.3 1Panel is an open source Linux server operation and maintenance management panel. | 7.5 |
| 2023-08-10 | CVE-2023-39965 | Incorrect Authorization vulnerability in Fit2Cloud 1Panel 1.4.3 1Panel is an open source Linux server operation and maintenance management panel. | 4.3 |
| 2023-08-10 | CVE-2023-39966 | Missing Authorization vulnerability in Fit2Cloud 1Panel 1.4.3 1Panel is an open source Linux server operation and maintenance management panel. | 9.8 |
| 2023-08-04 | CVE-2023-38692 | OS Command Injection vulnerability in Fit2Cloud Cloudexplorer Lite CloudExplorer Lite is an open source, lightweight cloud management platform. | 9.8 |