Vulnerabilities > Spaceapplications > Yamcs
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-19 | CVE-2023-45279 | Cross-site Scripting vulnerability in Spaceapplications Yamcs 5.8.6 Yamcs 5.8.6 allows XSS (issue 1 of 2). | 5.4 |
| 2023-10-19 | CVE-2023-45280 | Cross-site Scripting vulnerability in Spaceapplications Yamcs 5.8.6 Yamcs 5.8.6 allows XSS (issue 2 of 2). | 5.4 |
| 2023-10-19 | CVE-2023-45277 | Path Traversal vulnerability in Spaceapplications Yamcs 5.8.6 Yamcs 5.8.6 is vulnerable to directory traversal (issue 1 of 2). | 7.5 |
| 2023-10-19 | CVE-2023-45278 | Path Traversal vulnerability in Spaceapplications Yamcs 5.8.6 Directory Traversal vulnerability in the storage functionality of the API in Yamcs 5.8.6 allows attackers to delete arbitrary files via crafted HTTP DELETE request. | 9.1 |
| 2023-10-19 | CVE-2023-45281 | Cross-site Scripting vulnerability in Spaceapplications Yamcs 5.8.6 An issue in Yamcs 5.8.6 allows attackers to obtain the session cookie via upload of crafted HTML file. | 6.1 |