Felix Wallaschek

**Name of the Vulnerable Software and Affected Versions** Cprime Power Scripts app versions prior to 4.0.14 for Atlassian Jira **Description** The issue allows Directory Traversal. **Recommendations** For versions prior to 4.0.14, update to version 4.0.14 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Cordaware bestinformed Microsoft Windows client versions prior to 6.2.1.0 **Description** The issue is related to insecure implementations in the Scripting and AutoUpdate functionality, allowing remote attackers to execute arbitrary commands and escalate privileges. **Recommendations** For versions prior to 6.2.1.0, update to version 6.2.1.0 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Microsoft Windows client versions prior to 6.2.1.0 **Description** The issue concerns insecure SSL certificate verification and insecure access patterns, allowing remote attackers to downgrade encrypted connections to cleartext. **Recommendations** For versions prior to 6.2.1.0, update to version 6.2.1.0 or later to resolve the issue.