Changingtec Rava Certificate Validation System — known CVE vulnerabilities
Every CVE whose affected-product data names Changingtec Rava Certificate Validation System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-39056 — CVSS 9.8 (critical): RAVA certificate validation system has insufficient validation for user input. An unauthenticated remote attacker can inject arbitrary SQL…
CVE-2022-39058 — CVSS 7.5 (high): RAVA certification validation system has a path traversal vulnerability. An unauthenticated remote attacker can exploit this vulnerability…
CVE-2022-39057 — CVSS 7.2 (high): RAVA certificate validation system has insufficient filtering for special parameter of the web page input field. A remote attacker with…
CVE-2022-39055 — CVSS 5.3 (medium): RAVA certificate validation system has inadequate filtering for URL parameter. An unauthenticated remote attacker can perform SSRF attack…