Easyvirt Co2scope — known CVE vulnerabilities
Every CVE whose affected-product data names Easyvirt Co2scope, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
- CVE-2024-53356 — CVSS 9.8 (critical): Weak JWT Secret vulnerabilitiy in EasyVirt DCScope <= 8.6.0 and CO2Scope <= 1.3.0 allows remote attackers to generate JWT for privilege…
- CVE-2024-55062 — CVSS 9.8 (critical): Code Injection vulnerability in EasyVirt DCScope <= 8.6.0 and CO2Scope <= 1.3.0 allows remote unauthenticated attackers to execute…
- CVE-2024-57587 — CVSS 9.1 (critical): Multiple SQL injection vulnerabilities in EasyVirt DCScope <= 8.6.0 and CO2Scope <= 1.3.0 allows remote unauthenticated attackers to…
- CVE-2024-53355 — CVSS 8.8 (high): Multiple incorrect access control issues in EasyVirt DCScope <= 8.6.0 and CO2Scope <= 1.3.0 allows remote authenticated attackers, with low…
- CVE-2024-53357 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in EasyVirt DCScope <= 8.6.0 and CO2Scope <= 1.3.0 allows remote authenticated attackers, with low…
- CVE-2024-53354 — CVSS 6.5 (medium): Multiple SQL injection vulnerabilities in EasyVirt DCScope <= 8.6.0 and CO2Scope <= 1.3.0 allows remote authenticated attackers to execute…