Every CVE whose affected-product data names Snapt Aria, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2022-24235 — CVSS 8.8 (high): A Cross-Site Request Forgery (CSRF) in the management portal of Snapt Aria v12.8 allows attackers to escalate privileges and execute…
CVE-2022-24237 — CVSS 8.8 (high): The snaptPowered2 component of Snapt Aria v12.8 was discovered to contain a command injection vulnerability. This vulnerability allows…
CVE-2022-24236 — CVSS 3.5 (low): An insecure permissions vulnerability in Snapt Aria v12.8 allows unauthenticated attackers to send e-mails from spoofed users' accounts.