Huntflow Huntflow Enterprise — known CVE vulnerabilities
Every CVE whose affected-product data names Huntflow Huntflow Enterprise, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2021-37934 — CVSS 9.8 (critical): Due to insufficient server-side login-attempt limit enforcement, a vulnerability in /account/login in Huntflow Enterprise before 3.10.14…
CVE-2021-37933 — CVSS 7.5 (high): An LDAP injection vulnerability in /account/login in Huntflow Enterprise before 3.10.6 could allow an unauthenticated, remote user to…
CVE-2021-37935 — CVSS 7.5 (high): An information disclosure vulnerability in the login page of Huntflow Enterprise before 3.10.4 could allow an unauthenticated, remote user…