Setelsa-security Conacwin — known CVE vulnerabilities
Every CVE whose affected-product data names Setelsa-security Conacwin, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-4037 — CVSS 9.9 (critical): Blind SQL injection vulnerability in the Conacwin 3.7.1.2 web interface, the exploitation of which could allow a local attacker to obtain…
CVE-2020-25068 — CVSS 7.5 (high): Setelsa Conacwin v3.7.1.2 is vulnerable to a local file inclusion vulnerability. This vulnerability allows a remote unauthenticated…
CVE-2023-3512 — CVSS 7.5 (high): Relative path traversal vulnerability in Setelsa Security's ConacWin CB, in its 3.8.2.2 version and earlier, the exploitation of which…