Every CVE whose affected-product data names Riello-ups Netman 208, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-68916 — CVSS 9.1 (critical): Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/certsupload.cgi /../ directory traversal for file upload with resultant code…
CVE-2025-68914 — CVSS 6.5 (medium): Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/login.cgi username SQL Injection. For example, an attacker can delete the…
CVE-2025-68915 — CVSS 5.5 (medium): Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/loginbanner_w.cgi XSS via a crafted banner.