Skip to main content

Avalex

2 CVEs product

Monthly

CVE-2026-25462 MEDIUM This Month

Improper access control in Avalex versions up to 3.1.3 allows unauthenticated remote attackers to modify data or cause service disruptions due to incorrectly configured security levels. The vulnerability requires no user interaction and can be exploited over the network, affecting the integrity and availability of the affected system.

Authentication Bypass Avalex
NVD VulDB
CVSS 3.1
6.5
EPSS
0.0%
CVE-2023-25059 MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Avalex
NVD
CVSS 3.1
4.8
EPSS
0.5%
EPSS 0% CVSS 6.5
MEDIUM This Month

Improper access control in Avalex versions up to 3.1.3 allows unauthenticated remote attackers to modify data or cause service disruptions due to incorrectly configured security levels. The vulnerability requires no user interaction and can be exploited over the network, affecting the integrity and availability of the affected system.

Authentication Bypass Avalex
NVD VulDB
EPSS 1% CVSS 4.8
MEDIUM This Month

Auth. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Avalex
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy