Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
extensis portfolio 4.0 vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2022-24255
Extensis Portfolio v4.0 exists to contain hardcoded credentials which allows malicious users to gain administrator privileges.
Extensis Portfolio 4.0
1 Github repository
6.5
CVSSv2
CVE-2022-24254
An unrestricted file upload vulnerability in the Backup/Restore Archive component of Extensis Portfolio v4.0 allows remote malicious users to execute arbitrary code via a crafted ZIP file.
Extensis Portfolio 4.0
6.5
CVSSv2
CVE-2022-24252
An unrestricted file upload vulnerability in the FileTransferServlet component of Extensis Portfolio v4.0 allows remote malicious users to execute arbitrary code via a crafted file.
Extensis Portfolio 4.0
6.5
CVSSv2
CVE-2022-24251
Extensis Portfolio v4.0 exists to contain an authenticated unrestricted file upload vulnerability via the Catalog Asset Upload function.
Extensis Portfolio 4.0
6.5
CVSSv2
CVE-2022-24253
Extensis Portfolio v4.0 exists to contain an authenticated unrestricted file upload vulnerability via the component AdminFileTransferServlet.
Extensis Portfolio 4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started