Cassianetworks Access Controller — known CVE vulnerabilities
Every CVE whose affected-product data names Cassianetworks Access Controller, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-35793 — CVSS 8.8 (high): An issue was discovered in Cassia Access Controller 2.1.1.2303271039. Establishing a web SSH session to gateways is vulnerable to Cross…
CVE-2023-35794 — CVSS 8.8 (high): An issue was discovered in Cassia Access Controller 2.1.1.2303271039. The Web SSH terminal endpoint (spawned console) can be accessed…
CVE-2021-22685 — CVSS 6.2 (medium): An attacker may be able to use minify route with a relative path to view any file on the Cassia Networks Access Controller prior to 2.0.1.
CVE-2023-31445 — CVSS 5.3 (medium): Cassia Access controller before 2.1.1.2203171453, was discovered to have a unprivileged -information disclosure vulnerability that allows…