Vulnerabilities > Keysight > High

DATE CVE VULNERABILITY TITLE RISK
2023-07-19 CVE-2023-34394 Unrestricted Upload of File with Dangerous Type vulnerability in Keysight Geolocation Server
In Keysight Geolocation Server v2.4.2 and prior, an attacker could upload a specially crafted malicious file or delete any file or directory with SYSTEM privileges due to an improper path validation, which could result in local privilege escalation or a denial-of-service condition.
local
low complexity
keysight CWE-434
7.8
2023-07-19 CVE-2023-36853 Uncontrolled Search Path Element vulnerability in Keysight Geolocation Server
?In Keysight Geolocation Server v2.4.2 and prior, a low privileged attacker could create a local ZIP file containing a malicious script in any location.
local
low complexity
keysight CWE-427
7.8
2022-06-02 CVE-2022-1661 Path Traversal vulnerability in Keysight N6841A RF Firmware and N6854A Firmware
The affected products are vulnerable to directory traversal, which may allow an attacker to obtain arbitrary operating system files.
network
low complexity
keysight CWE-22
7.5