Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloverdx vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2021-30133
A cross-site scripting (XSS) vulnerability in CloverDX Server 5.9.0, CloverDX 5.8.1, CloverDX 5.7.0, and previous versions allows remote malicious users to inject arbitrary web script or HTML via the sessionToken parameter of multiple methods in Simple HTTP API. This is resolved ...
Cloverdx Cloverdx
Cloverdx Cloverdx 5.8.0
Cloverdx Cloverdx 5.8.1
NA
CVE-2023-31056
CloverDX prior to 5.17.3 writes passwords to the audit log in certain situations, if the audit log is enabled and single sign-on is not employed. The fixed versions are 5.15.4, 5.16.2, 5.17.3, and 6.0.x.
Cloverdx Cloverdx
Cloverdx Cloverdx 5.16.1
Cloverdx Cloverdx 5.16.0
605
VMScore
CVE-2021-42776
CloverDX Server prior to 5.11.2 and and 5.12.x prior to 5.12.1 allows XXE during configuration import.
Cloverdx Cloverdx
Cloverdx Cloverdx 5.12.0
Cloverdx Cloverdx 5.12.1
605
VMScore
CVE-2021-29995
A Cross Site Request Forgery (CSRF) issue in Server Console in CloverDX up to and including 5.9.0 allows remote malicious users to execute any action as the logged-in user (including script execution). The issue is resolved in CloverDX 5.10, CloverDX 5.9.1, CloverDX 5.8.2, and Cl...
Cloverdx Cloverdx
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
injection
CVE-2024-30983
CVE-2023-4235
CVE-2024-21338
privilege
encryption
CVE-2023-4232
CVE-2024-31497
CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started