Every CVE whose affected-product data names Siemens Xhq, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2019-13932 — CVSS 9.1 (critical): A vulnerability has been identified in XHQ (All versions < V6.0.0.2). The web application requests could be manipulated, causing the the…
CVE-2019-19289 — CVSS 8.8 (high): A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow a Cross-Site Request Forgery (CSRF) attack…
CVE-2019-13930 — CVSS 8.1 (high): A vulnerability has been identified in XHQ (All versions < V6.0.0.2). The web interface could allow a Cross-Site Request Forgery (CSRF)…
CVE-2019-19286 — CVSS 7.2 (high): A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow SQL injection attacks if an attacker is able…
CVE-2019-19287 — CVSS 6.5 (medium): A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow attackers to traverse through the file…
CVE-2019-19288 — CVSS 6.1 (medium): A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow Cross-Site Scripting (XSS) attacks if…
CVE-2019-19284 — CVSS 5.4 (medium): A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow Cross-Site Scripting (XSS) attacks if an…
CVE-2019-19285 — CVSS 5.4 (medium): A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow injections that could lead to XSS attacks if…
CVE-2019-13931 — CVSS 5.4 (medium): A vulnerability has been identified in XHQ (All versions < V6.0.0.2). The web interface could allow for an an attacker to craft the input…
CVE-2019-19283 — CVSS 5.3 (medium): A vulnerability has been identified in XHQ (All Versions < 6.1). The application's web server could expose non-sensitive information about…