Every CVE whose affected-product data names Ericssonlg Ipecs Nms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2018-10285 — CVSS 9.8 (critical): The Ericsson-LG iPECS NMS A.1Ac web application uses incorrect access control mechanisms. Since the app does not use any sort of session…
CVE-2018-9245 — CVSS 9.8 (critical): The Ericsson-LG iPECS NMS A.1Ac login portal has a SQL injection vulnerability in the User ID and password fields that allows users to…
CVE-2018-10286 — CVSS 8.8 (high): The Ericsson-LG iPECS NMS A.1Ac web application discloses sensitive information such as the NMS admin credentials and the PostgreSQL…