Every CVE whose affected-product data names Reedos Aim-star, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2024-45790 — CVSS 9.8 (critical): This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing restrictions for excessive failed authentication attempts on its…
CVE-2024-45788 — CVSS 7.5 (high): This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing rate limiting on OTP requests in certain API endpoints. An…
CVE-2024-45786 — CVSS 6.5 (medium): This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper access controls on its certain API endpoints. An authenticated…
CVE-2024-45787 — CVSS 6.5 (medium): This vulnerability exists in Reedos aiM-Star version 2.0.1 due to transmission of sensitive information in plain text in certain API…
CVE-2024-45789 — CVSS 4.3 (medium): This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper validation of the ‘mode’ parameter in the API endpoint used…