Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
smartbear zephyr enterprise vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-22889
SmartBear Zephyr Enterprise up to and including 7.15.0 mishandles user-defined input during report generation. This could lead to remote code execution by unauthenticated users.
Smartbear Zephyr Enterprise
7.5
CVSSv3
CVE-2023-22890
SmartBear Zephyr Enterprise up to and including 7.15.0 allows unauthenticated users to upload large files, which could exhaust the local drive space, causing a denial of service condition.
Smartbear Zephyr Enterprise
8.1
CVSSv3
CVE-2023-22891
There exists a privilege escalation vulnerability in SmartBear Zephyr Enterprise up to and including 7.15.0 that could be exploited by authorized users to reset passwords for other accounts.
Smartbear Zephyr Enterprise
7.5
CVSSv3
CVE-2023-22892
There exists an information disclosure vulnerability in SmartBear Zephyr Enterprise up to and including 7.15.0 that could be exploited by unauthenticated users to read arbitrary files from Zephyr instances.
Smartbear Zephyr Enterprise
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started