Supermicro-cms Project Supermicro-cms — known CVE vulnerabilities
Every CVE whose affected-product data names Supermicro-cms Project Supermicro-cms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-25857 — CVSS 7.2 (high): An issue was discovered in pcmt superMicro-CMS version 3.11, allows authenticated attackers to execute arbitrary code via the font_type…
CVE-2021-25856 — CVSS 4.9 (medium): An issue was discovered in pcmt superMicro-CMS version 3.11, allows attackers to delete files via crafted image file in images.php.