Skip to main content

Moduweb Vision

3 CVEs product

Monthly

CVE-2015-7916 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in Sauter EY-WS505F0x0 moduWeb Vision before 1.6.0 allows remote authenticated users to inject arbitrary web script or HTML via a crafted query. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Moduweb Vision
NVD
CVSS 3.1
6.5
EPSS
0.2%
CVE-2015-7915 CRITICAL Act Now

Sauter EY-WS505F0x0 moduWeb Vision before 1.6.0 sends cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Moduweb Vision
NVD
CVSS 3.0
9.8
EPSS
0.8%
CVE-2015-7914 HIGH This Week

Sauter EY-WS505F0x0 moduWeb Vision before 1.6.0 allows remote attackers to bypass authentication by leveraging knowledge of a password hash without knowledge of the associated password. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Moduweb Vision
NVD
CVSS 3.0
8.1
EPSS
0.8%
EPSS 0% CVSS 6.5
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in Sauter EY-WS505F0x0 moduWeb Vision before 1.6.0 allows remote authenticated users to inject arbitrary web script or HTML via a crafted query. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Moduweb Vision
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Sauter EY-WS505F0x0 moduWeb Vision before 1.6.0 sends cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Moduweb Vision
NVD
EPSS 1% CVSS 8.1
HIGH This Week

Sauter EY-WS505F0x0 moduWeb Vision before 1.6.0 allows remote attackers to bypass authentication by leveraging knowledge of a password hash without knowledge of the associated password. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Moduweb Vision
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy