Every CVE whose affected-product data names Scytl Secure Vote, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2019-25022 — CVSS 9.8 (critical): An issue was discovered in Scytl sVote 2.1. An attacker can inject code that gets executed by creating an election-event and injecting a…
CVE-2019-25020 — CVSS 7.5 (high): An issue was discovered in Scytl sVote 2.1. Because the sdm-ws-rest API does not require authentication, an attacker can retrieve the…
CVE-2019-25021 — CVSS 7.5 (high): An issue was discovered in Scytl sVote 2.1. Due to the implementation of the database manager, an attacker can access the OrientDB by…
CVE-2019-25023 — CVSS 6.5 (medium): An issue was discovered in Scytl sVote 2.1. Because the IP address from an X-Forwarded-For header (which can be manipulated client-side) is…