Skip to main content

Iota C Ai

2 CVEs product

Monthly

CVE-2024-52959 CRITICAL Act Now

A Improper Control of Generation of Code ('Code Injection') vulnerability in plugin management in iota C.ai Conversational Platform from 1.0.0 through 2.1.3 allows remote authenticated users to. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection RCE Iota C Ai
NVD
CVSS 4.0
9.3
EPSS
0.6%
CVE-2024-52958 CRITICAL Act Now

A improper verification of cryptographic signature vulnerability in plugin management in iota C.ai Conversational Platform from 1.0.0 through 2.1.3 allows remote authenticated users to load a. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jwt Attack Information Disclosure Iota C Ai
NVD
CVSS 4.0
9.3
EPSS
0.3%
EPSS 1% CVSS 9.3
CRITICAL Act Now

A Improper Control of Generation of Code ('Code Injection') vulnerability in plugin management in iota C.ai Conversational Platform from 1.0.0 through 2.1.3 allows remote authenticated users to. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection RCE Iota C Ai
NVD
EPSS 0% CVSS 9.3
CRITICAL Act Now

A improper verification of cryptographic signature vulnerability in plugin management in iota C.ai Conversational Platform from 1.0.0 through 2.1.3 allows remote authenticated users to load a. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jwt Attack Information Disclosure Iota C Ai
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy