Every CVE whose affected-product data names Vdgsecurity Vdg Sense, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2014-9451 — CVSS 7.5 (high): Multiple stack-based buffer overflows in the DIVA web service API (/webservice) in VDG Security SENSE (formerly DIVA) 2.3.13 allow remote…
CVE-2014-9575 — CVSS 6.4 (medium): VDG Security SENSE (formerly DIVA) before 2.3.15 allows remote attackers to bypass authentication, and consequently read and modify…
CVE-2014-9576 — CVSS 5.0 (medium): VDG Security SENSE (formerly DIVA) 2.3.13 has a hardcoded password of (1) ArpaRomaWi for the root Postgres account and !DVService for the…
CVE-2014-9452 — CVSS 5.0 (medium): Directory traversal vulnerability in VDG Security SENSE (formerly DIVA) 2.3.13 allows remote attackers to read arbitrary files via a…
CVE-2014-9579 — CVSS 5.0 (medium): VDG Security SENSE (formerly DIVA) 2.3.13 stores administrator credentials in cleartext, which allows attackers to obtain sensitive…
CVE-2014-9578 — CVSS 5.0 (medium): VDG Security SENSE (formerly DIVA) 2.3.13 performs authentication with a password hash instead of a password, which allows remote attackers…
CVE-2014-9577 — CVSS 4.0 (medium): VDG Security SENSE (formerly DIVA) 2.3.13 sends the user database when a user logs in, which allows remote authenticated users to obtain…