MidnightBSD

Advisories for capasystems

CVE-2013-5216 MEDIUM

Directory traversal vulnerability in logreader/uploadreader.jsp in CapaSystems Performance Guard before 6.2.102 allows remote attackers to read arbitrary files via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
capasystems performance_guard *
capasystems performance_guard 6.1.27
capasystems performance_guard 6.2.25
capasystems performance_guard 6.1.16
capasystems performance_guard 6.1.29
capasystems performance_guard 6.0
CVE-2020-27977 MEDIUM

CapaSystems CapaInstaller before 6.0.101 does not properly assign, modify, or check privileges for an actor who attempts to edit registry values, allowing an attacker to escalate privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
capasystems capainstaller *