Vulnerabilities in Rexroth
35 resultsCVE-2021-23858HIGHInformation disclosureEPSS 1.2%CVE-2021-23857CRITICALLogin with hashEPSS 1.2%CVE-2023-48243HIGHThe vulnerability allows a remote attacker to upload arbitrary files in all paths of the system under the context of the application OS userEPSS 1.1%CVE-2023-48253HIGHThe vulnerability allows a remote authenticated attacker to read or update arbitrary content of the authentication database via a crafted HTEPSS 0.9%CVE-2023-48249MEDIUMThe vulnerability allows an authenticated remote attacker to list arbitrary folders in all paths of the system under the context of the applEPSS 0.8%CVE-2023-48246MEDIUMThe vulnerability allows a remote attacker to download arbitrary files in all paths of the system under the context of the application OS usEPSS 0.8%CVE-2023-48242MEDIUMThe vulnerability allows an authenticated remote attacker to download arbitrary files in all paths of the system under the context of the apEPSS 0.8%CVE-2023-48266HIGHThe vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code ExeEPSS 0.8%CVE-2023-48265HIGHThe vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code ExeEPSS 0.8%CVE-2023-48263HIGHThe vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code ExeEPSS 0.8%CVE-2023-48264HIGHThe vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code ExeEPSS 0.8%CVE-2023-48262HIGHThe vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service (DoS) attack or, possibly, obtain Remote Code ExeEPSS 0.8%CVE-2023-48252HIGHThe vulnerability allows an authenticated remote attacker to perform actions exceeding their authorized access via crafted HTTP requests.EPSS 0.6%CVE-2023-48245MEDIUMThe vulnerability allows an unauthenticated remote attacker to upload arbitrary files under the context of the application OS user (“root”) EPSS 0.6%CVE-2023-48259MEDIUMThe vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request.EPSS 0.6%CVE-2023-48261MEDIUMThe vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request.EPSS 0.6%CVE-2023-48260MEDIUMThe vulnerability allows a remote unauthenticated attacker to read arbitrary content of the results database via a crafted HTTP request.EPSS 0.6%CVE-2021-23856CRITICALReflected Cross-Site-ScriptingEPSS 0.6%CVE-2021-23855HIGHInformation disclosureEPSS 0.6%CVE-2023-48250HIGHThe vulnerability allows a remote attacker to authenticate to the web application with high privileges through multiple hidden hard-coded acEPSS 0.6%