Every CVE whose affected-product data names Irohasoft Iroha Board, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2025-41404 — CVSS 4.3 (medium): Direct request ('Forced Browsing') issue exists in iroha Board versions v0.10.12 and earlier. If this vulnerability is exploited…
CVE-2025-48497 — CVSS 4.3 (medium): Cross-site request forgery vulnerability exists in iroha Board versions v0.10.12 and earlier. If a user accesses a specially crafted URL…