MidnightBSD

Advisories for bruhn-newtech

CVE-2022-45193

CBRN-Analysis before 22 has weak file permissions under Public Profile, leading to disclosure of file contents or privilege escalation.

Products Affected

Vendor Product Version
bruhn-newtech cbrn-analysis *
CVE-2022-45194

CBRN-Analysis before 22 allows XXE attacks via am mws XML document, leading to NTLMv2-SSP hash disclosure.

Products Affected

Vendor Product Version
bruhn-newtech cbrn-analysis *