Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloverdx vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-30133
A cross-site scripting (XSS) vulnerability in CloverDX Server 5.9.0, CloverDX 5.8.1, CloverDX 5.7.0, and previous versions allows remote malicious users to inject arbitrary web script or HTML via the sessionToken parameter of multiple methods in Simple HTTP API. This is resolved ...
Cloverdx Cloverdx
Cloverdx Cloverdx 5.8.0
Cloverdx Cloverdx 5.8.1
NA
CVE-2023-31056
CloverDX prior to 5.17.3 writes passwords to the audit log in certain situations, if the audit log is enabled and single sign-on is not employed. The fixed versions are 5.15.4, 5.16.2, 5.17.3, and 6.0.x.
Cloverdx Cloverdx
Cloverdx Cloverdx 5.16.1
Cloverdx Cloverdx 5.16.0
6.8
CVSSv2
CVE-2021-42776
CloverDX Server prior to 5.11.2 and and 5.12.x prior to 5.12.1 allows XXE during configuration import.
Cloverdx Cloverdx
Cloverdx Cloverdx 5.12.0
Cloverdx Cloverdx 5.12.1
6.8
CVSSv2
CVE-2021-29995
A Cross Site Request Forgery (CSRF) issue in Server Console in CloverDX up to and including 5.9.0 allows remote malicious users to execute any action as the logged-in user (including script execution). The issue is resolved in CloverDX 5.10, CloverDX 5.9.1, CloverDX 5.8.2, and Cl...
Cloverdx Cloverdx
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started