Every CVE whose affected-product data names Emc Vipr Srm, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2016-0922 — CVSS 9.8 (critical): EMC ViPR SRM before 3.7.2 does not restrict the number of password-authentication attempts, which makes it easier for remote attackers to…
CVE-2016-0891 — CVSS 8.8 (high): Multiple cross-site request forgery (CSRF) vulnerabilities in administrative pages in EMC ViPR SRM before 3.7 allow remote attackers to…
CVE-2016-6641 — CVSS 7.6 (high): Cross-site scripting (XSS) vulnerability in EMC ViPR SRM before 3.7.2 allows remote authenticated users to inject arbitrary web script or…
CVE-2015-0515 — CVSS 6.5 (medium): Unrestricted file upload vulnerability in EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 allows remote authenticated users…
CVE-2016-6643 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in EMC ViPR SRM before 3.7.2 allows remote attackers to inject arbitrary web script or HTML via…
CVE-2016-6642 — CVSS 6.1 (medium): Cross-site request forgery (CSRF) vulnerability in EMC ViPR SRM before 3.7.2 allows remote attackers to hijack the authentication of…
CVE-2016-6647 — CVSS 5.4 (medium): Cross-site scripting (XSS) vulnerability in EMC ViPR SRM before 4.0.1 allows remote authenticated users to inject arbitrary web script or…
CVE-2015-0514 — CVSS 5.0 (medium): EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 might allow remote attackers to obtain cleartext data-center discovery…
CVE-2015-0516 — CVSS 4.0 (medium): Directory traversal vulnerability in EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 allows remote authenticated users to…
CVE-2015-0513 — CVSS 3.5 (low): Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in EMC M&R (aka Watch4Net) before 6.5u1 and ViPR…