Easyvista Service Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Easyvista Service Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2022-38490 — CVSS 9.6 (critical): An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Some parameters allow SQL injection. Version 2022.1.110.1.02…
CVE-2022-38491 — CVSS 8.2 (high): An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Part of the application does not implement protection against…
CVE-2022-38492 — CVSS 7.7 (high): An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. One parameter allows SQL injection. Version 2022.1.110.1.02 fixes…
CVE-2021-33231 — CVSS 5.4 (medium): Cross Site Scripting (XSS) vulnerability in New equipment page in EasyVista Service Manager 2018.1.181.1 allows remote attackers to run…
CVE-2022-38489 — CVSS 4.8 (medium): An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03 It is prone to stored Cross-site Scripting (XSS). Version…