Every CVE whose affected-product data names Maarch Maarch Rm, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2019-15855 — CVSS 9.1 (critical): An issue was discovered in Maarch RM before 2.5. A path traversal vulnerability allows an unauthenticated remote attacker to overwrite any…
CVE-2019-15854 — CVSS 8.8 (high): An issue was discovered in Maarch RM before 2.5. A privilege escalation vulnerability allows an authenticated user with lowest privileges…
CVE-2022-37772 — CVSS 7.5 (high): Maarch RM 2.8.3 solution contains an improper restriction of excessive authentication attempts due to excessive verbose responses from the…
CVE-2022-37773 — CVSS 6.5 (medium): An authenticated SQL Injection vulnerability in the statistics page (/statistics/retrieve) of Maarch RM 2.8, via the filter parameter…
CVE-2022-37774 — CVSS 5.3 (medium): There is a broken access control vulnerability in the Maarch RM 2.8.3 solution. When accessing some specific document (pdf, email) from an…