Known Vulnerabilities for products from Fit2cloud
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Fit2cloud".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-15598 json | A vulnerability was found in Dataease SQLBot up to 1.5.1. This impacts the function validateEmbedded of the file backend/apps... | Not Provided | 2026-03-03 | 2026-04-29 |
| CVE-2025-15597 json | A vulnerability has been found in Dataease SQLBot up to 1.4.0. This affects an unknown function of the file backend/apps/syst... | Not Provided | 2026-03-02 | 2026-04-29 |
| CVE-2025-14117 json | A vulnerability has been found in fit2cloud Halo 2.21.10. Impacted is an unknown function. The manipulation leads to cross-si... | Not Provided | 2025-12-06 | 2026-04-29 |
| CVE-2023-48193 json | 9.8 - CRITICAL | 2023-11-28 | 2023-12-04 | |
| CVE-2023-46138 json | JumpServer is an open source bastion host and maintenance security audit system that complies with 4A specifications. Prior t... | 5.3 - MEDIUM | 2023-10-31 | 2023-11-08 |
| CVE-2023-46123 json | jumpserver is an open source bastion machine, professional operation and maintenance security audit system that complies with... | 5.3 - MEDIUM | 2023-10-25 | 2023-11-01 |
| CVE-2023-44397 json | CloudExplorer Lite is an open source, lightweight cloud management platform. Prior to version 1.4.1, the gateway filter of Cl... | 9.8 - CRITICAL | 2023-10-30 | 2023-11-06 |
| CVE-2023-43652 json | JumpServer is an open source bastion host. As an unauthenticated user, it is possible to authenticate to the core API with a ... | 9.1 - CRITICAL | 2023-09-27 | 2023-10-02 |
| CVE-2023-43651 json | JumpServer is an open source bastion host. An authenticated user can exploit a vulnerability in MongoDB sessions to execute a... | 9.9 - CRITICAL | 2023-09-27 | 2023-10-02 |
| CVE-2023-43650 json | JumpServer is an open source bastion host. The verification code for resetting user's password is vulnerable to brute-force a... | 7.4 - HIGH | 2023-09-27 | 2023-10-02 |
| CVE-2023-42820 json | JumpServer is an open source bastion host. This vulnerability is due to exposing the random number seed to the API, potential... | 8.2 - HIGH | 2023-09-27 | 2023-09-29 |
| CVE-2023-42819 json | JumpServer is an open source bastion host. Logged-in users can access and modify the contents of any file on the system. A us... | 8.8 - HIGH | 2023-09-27 | 2023-09-29 |
| CVE-2023-42818 json | JumpServer is an open source bastion host. When users enable MFA and use a public key for authentication, the Koko SSH server... | 9.8 - CRITICAL | 2023-09-27 | 2023-10-02 |
| CVE-2023-42442 json | JumpServer is an open source bastion host and a professional operation and maintenance security audit system. Starting in ver... | 5.3 - MEDIUM | 2023-09-15 | 2023-09-20 |
| CVE-2023-42405 json | SQL injection vulnerability in FIT2CLOUD RackShift v1.7.1 allows attackers to execute arbitrary code via the `sort` parameter... | 9.8 - CRITICAL | 2023-09-14 | 2023-09-19 |
| CVE-2023-42147 json | An issue in CloudExplorer Lite 1.3.1 allows an attacker to obtain sensitive information via the login key component. | 7.5 - HIGH | 2023-09-20 | 2023-09-22 |
| CVE-2023-39966 json | 1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, an arbitrary file write v... | 9.8 - CRITICAL | 2023-08-10 | 2023-09-08 |
| CVE-2023-39965 json | 1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, authenticated attackers c... | 4.3 - MEDIUM | 2023-08-10 | 2023-09-08 |
| CVE-2023-39964 json | 1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, arbitrary file reads allo... | 7.5 - HIGH | 2023-08-10 | 2023-09-08 |
| CVE-2023-39519 json | Cloud Explorer Lite is an open source cloud management platform. Prior to version 1.4.0, there is a risk of sensitive informa... | 4.9 - MEDIUM | 2023-08-24 | 2023-08-29 |