Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
siren investigate vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-47543
An issue exists in Siren Investigate prior to 12.1.7. There is an ACL bypass on global objects.
Siren Investigate
9.8
CVSSv3
CVE-2022-47544
An issue exists in Siren Investigate prior to 12.1.7. Script variable whitelisting is insufficiently sandboxed.
Siren Investigate
8.1
CVSSv3
CVE-2021-31216
Siren Investigate prior to 11.1.1 contains a server side request forgery (SSRF) defect in the built-in image proxy route (which is enabled by default). An attacker with access to the Investigate installation can specify an arbitrary URL in the parameters of the image proxy route ...
Siren Investigate
9.8
CVSSv3
CVE-2023-35857
In Siren Investigate prior to 13.2.2, session keys remain active even after logging out.
Siren Investigate
1 Github repository
9.8
CVSSv3
CVE-2021-36794
In Siren Investigate prior to 11.1.4, when enabling the cluster feature of the Siren Alert application, TLS verifications are disabled globally in the Siren Investigate main process.
Siren Investigate
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started