Every CVE whose affected-product data names Siren Investigate, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-36794 — CVSS 9.8 (critical): In Siren Investigate before 11.1.4, when enabling the cluster feature of the Siren Alert application, TLS verifications are disabled…
CVE-2022-47544 — CVSS 9.8 (critical): An issue was discovered in Siren Investigate before 12.1.7. Script variable whitelisting is insufficiently sandboxed.
CVE-2021-31216 — CVSS 8.1 (high): Siren Investigate before 11.1.1 contains a server side request forgery (SSRF) defect in the built-in image proxy route (which is enabled by…
CVE-2022-47543 — CVSS 5.3 (medium): An issue was discovered in Siren Investigate before 12.1.7. There is an ACL bypass on global objects.