Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
abbyy vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-13791
The HTTP API in ABBYY FlexiCapture prior to 12 Release 1 Update 7 allows an malicious user to conduct Access Control attacks via the /FlexiCapture12/Login/Server/SevaUserProfile FlexiCaptureTmsSts2 parameter.
Abbyy Flexicapture 12.0.1.475
Abbyy Flexicapture 12.0.1.428
Abbyy Flexicapture 12.0.1.367
Abbyy Flexicapture 12.0.1.292
Abbyy Flexicapture 12.0.1.267
Abbyy Flexicapture 12.0.1.282
Abbyy Flexicapture 12.0.1.263
8.8
CVSSv3
CVE-2018-13793
Multiple Cross Site Request Forgery (CSRF) vulnerabilities in the HTTP API in ABBYY FlexiCapture prior to 12 Release 1 Update 7 exist in Web Verification, Web Scanning, Web Capture, Monitoring and Administration, and Login.
Abbyy Flexicapture 12.0.1.475
Abbyy Flexicapture 12.0.1.428
Abbyy Flexicapture 12.0.1.367
Abbyy Flexicapture 12.0.1.292
Abbyy Flexicapture 12.0.1.282
Abbyy Flexicapture 12.0.1.263
Abbyy Flexicapture 12.0.1.267
9.8
CVSSv3
CVE-2018-13792
Multiple SQL injection vulnerabilities in the monitoring feature in the HTTP API in ABBYY FlexiCapture prior to 12 Release 2 allow an malicious user to execute arbitrary SQL commands via the mask, sortOrder, filter, or Order parameter.
Abbyy Flexicapture
7.8
CVSSv3
CVE-2019-20383
ABBYY network license server in ABBYY FineReader 15 before Release 4 (aka 15.0.112.2130) allows escalation of privileges by local users via manipulations involving files and using symbolic links.
Abbyy Finereader
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started