Intersystems » Cache Database : Security Vulnerabilities, CVEs, CVSS score >= 5
Unspecified vulnerability in the Cache' Server Page (CSP) implementation in InterSystems Cache' 4.0.3 through 5.0.5 allows remote attackers to "gain complete control" of a server.
Max CVSS
10.0
EPSS Score
0.31%
Published
2003-12-31
Updated
2010-06-23
Caché Database 5.x installs the /cachesys/csp directory with insecure permissions, which allows local users to execute arbitrary code by adding server-side scripts that are executed with root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-08-07
Updated
2020-02-10
Caché Database 5.x installs /cachesys/bin/cache with world-writable permissions, which allows local users to gain privileges by modifying cache and executing it via cuxs.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-08-07
Updated
2020-02-10
3 vulnerabilities found