Every CVE whose affected-product data names Auvesy-mdt Autosave, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2021-32933 — CVSS 10.0 (critical): An attacker could leverage an API to pass along a malicious file that could then manipulate the process creation command line in MDT…
CVE-2021-32953 — CVSS 9.8 (critical): An attacker could utilize SQL commands to create a new user MDT AutoSave versions prior to v6.02.06 and update the user’s permissions…
CVE-2021-32945 — CVSS 7.5 (high): An attacker could decipher the encryption and gain access to MDT AutoSave versions prior to v6.02.06.
CVE-2021-32957 — CVSS 7.5 (high): A function in MDT AutoSave versions prior to v6.02.06 is used to retrieve system information for a specific process, and this information…
CVE-2021-32961 — CVSS 7.5 (high): A getfile function in MDT AutoSave versions prior to v6.02.06 enables a user to supply an optional parameter, resulting in the processing…
CVE-2021-32949 — CVSS 7.5 (high): An attacker could utilize a function in MDT AutoSave versions prior to v6.02.06 that permits changing a designated path to another path and…
CVE-2021-32937 — CVSS 7.5 (high): An attacker can gain knowledge of a session temporary working folder where the getfile and putfile commands are used in MDT AutoSave…