Vulnerabilities > Hammock > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-07-17 CVE-2017-2241 SQL Injection vulnerability in Hammock Assetview 9.2
SQL injection vulnerability in the AssetView for MacOS Ver.9.2.0 and earlier versions allows remote attackers to execute arbitrary SQL commands via "File Transfer Web Service".
network
low complexity
hammock CWE-89
6.3
6.3
2017-07-17 CVE-2017-2240 Path Traversal vulnerability in Hammock Assetview 9.2
Directory traversal vulnerability in AssetView for MacOS Ver.9.2.0 and earlier versions allows remote attackers to read arbitrary files via "File Transfer Web Service".
network
low complexity
hammock CWE-22
6.5
6.5