Nchsoftware Express Accounts — known CVE vulnerabilities
Every CVE whose affected-product data names Nchsoftware Express Accounts, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-13474 — CVSS 6.5 (medium): In NCH Express Accounts 8.24 and earlier, an authenticated low-privilege user can enter a crafted URL to access higher-privileged…
CVE-2020-13473 — CVSS 5.5 (medium): NCH Express Accounts 8.24 and earlier allows local users to discover the cleartext password by reading the configuration file.