Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloverdx vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-30133
A cross-site scripting (XSS) vulnerability in CloverDX Server 5.9.0, CloverDX 5.8.1, CloverDX 5.7.0, and previous versions allows remote malicious users to inject arbitrary web script or HTML via the sessionToken parameter of multiple methods in Simple HTTP API. This is resolved ...
Cloverdx Cloverdx
Cloverdx Cloverdx 5.8.0
Cloverdx Cloverdx 5.8.1
7.7
CVSSv3
CVE-2021-42776
CloverDX Server prior to 5.11.2 and and 5.12.x prior to 5.12.1 allows XXE during configuration import.
Cloverdx Cloverdx
Cloverdx Cloverdx 5.12.0
Cloverdx Cloverdx 5.12.1
6.5
CVSSv3
CVE-2023-31056
CloverDX prior to 5.17.3 writes passwords to the audit log in certain situations, if the audit log is enabled and single sign-on is not employed. The fixed versions are 5.15.4, 5.16.2, 5.17.3, and 6.0.x.
Cloverdx Cloverdx
Cloverdx Cloverdx 5.16.1
Cloverdx Cloverdx 5.16.0
8.8
CVSSv3
CVE-2021-29995
A Cross Site Request Forgery (CSRF) issue in Server Console in CloverDX up to and including 5.9.0 allows remote malicious users to execute any action as the logged-in user (including script execution). The issue is resolved in CloverDX 5.10, CloverDX 5.9.1, CloverDX 5.8.2, and Cl...
Cloverdx Cloverdx
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298
CVE-2024-20356
CVE-2023-21987
CVE-2024-33217
bypass
CVE-2024-31804
CVE-2024-32660
unauthorized
SSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started