Hexagon : Security Vulnerabilities, CVEs, CVSS score >= 6
Hexagon G!nius Auskunftsportal before 5.0.0.0 allows SQL injection via the GiPWorkflow/Service/DownloadPublicFile id parameter.
Max CVSS
7.5
EPSS Score
1.38%
Published
2021-05-14
Updated
2021-05-21
Stack-based buffer overflow in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ERS file.
Max CVSS
9.3
EPSS Score
3.15%
Published
2014-01-19
Updated
2014-01-21
CVE-2013-3482
Public exploit
Stack-based buffer overflow in the rf_report_error function in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long string in an ERS file.
Max CVSS
9.3
EPSS Score
89.24%
Published
2014-01-19
Updated
2014-01-21
Multiple stack-based buffer overflows in NCSAddOn.dll in the ERDAS APOLLO ECWP plugin before 13.00.0001 for Internet Explorer, Firefox, and Chrome allow remote attackers to execute arbitrary code via a long property value.
Max CVSS
10.0
EPSS Score
0.40%
Published
2013-04-25
Updated
2013-05-06
CVE-2013-0726
Public exploit
Stack-based buffer overflow in the ERM_convert_to_correct_webpath function in ermapper_u.dll in ERDAS ER Viewer before 13.00.0001 allows remote attackers to execute arbitrary code via a crafted pathname in an ERS file.
Max CVSS
9.3
EPSS Score
84.11%
Published
2013-05-05
Updated
2013-05-06
5 vulnerabilities found