Vulnerabilities > NSA > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-07-02 CVE-2021-32639 Server-Side Request Forgery (SSRF) vulnerability in NSA Emissary
Emissary is a P2P-based, data-driven workflow engine.
network
low complexity
nsa CWE-918
6.5
2021-06-01 CVE-2021-32647 Unsafe Reflection vulnerability in NSA Emissary 6.4.0
Emissary is a P2P based data-driven workflow engine.
network
low complexity
nsa CWE-470
6.5
2021-05-21 CVE-2021-32634 Deserialization of Untrusted Data vulnerability in NSA Emissary 6.4.0
Emissary is a distributed, peer-to-peer, data-driven workflow framework.
network
low complexity
nsa CWE-502
6.5
2021-05-07 CVE-2021-32092 Cross-site Scripting vulnerability in NSA Emissary 5.9.0
A Cross-site scripting (XSS) vulnerability in the DocumentAction component of U.S.
network
nsa CWE-79
4.3
2021-05-07 CVE-2021-32093 Missing Authorization vulnerability in NSA Emissary 5.9.0
The ConfigFileAction component of U.S.
network
low complexity
nsa CWE-862
4.0
2021-05-07 CVE-2021-32094 Unrestricted Upload of File with Dangerous Type vulnerability in NSA Emissary 5.9.0
U.S.
network
low complexity
nsa CWE-434
6.5
2021-05-07 CVE-2021-32095 Missing Authorization vulnerability in NSA Emissary 5.9.0
U.S.
network
low complexity
nsa CWE-862
5.5
2021-05-07 CVE-2021-32096 Cross-Site Request Forgery (CSRF) vulnerability in NSA Emissary 5.9.0
The ConsoleAction component of U.S.
network
nsa CWE-352
6.8
2019-10-16 CVE-2019-17665 Untrusted Search Path vulnerability in NSA Ghidra 9.0/9.0.1/9.0.2
NSA Ghidra before 9.0.2 is vulnerable to DLL hijacking because it loads jansi.dll from the current working directory.
local
nsa CWE-426
4.4
2019-10-16 CVE-2019-17664 Untrusted Search Path vulnerability in NSA Ghidra
NSA Ghidra through 9.0.4 uses a potentially untrusted search path.
local
nsa CWE-426
4.4