Altova Mobiletogether Server — known CVE vulnerabilities
Every CVE whose affected-product data names Altova Mobiletogether Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-37425 — CVSS 9.1 (critical): Altova MobileTogether Server before 7.3 SP1 allows XXE attacks, such as an InfoSetChanges/Changes attack against /workflowmanagement, or…
CVE-2021-38490 — CVSS 7.5 (high): Altova MobileTogether Server before 7.3 SP1 allows XML exponential entity expansion, a different vulnerability than CVE-2021-37425.