Every CVE whose affected-product data names Mv Mconnect, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-23282 — CVSS 7.5 (high): SQL injection in Logon Page in MV's mConnect application, v02.001.00, allows an attacker to use a non existing user with a generic password…
CVE-2020-23283 — CVSS 7.5 (high): Information disclosure in Logon Page in MV's mConnect application v02.001.00 allows an attacker to know valid users from the application's…