Visualware Myconnection Server — known CVE vulnerabilities
Every CVE whose affected-product data names Visualware Myconnection Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2021-27198 — CVSS 9.8 (critical): An issue was discovered in Visualware MyConnection Server before v11.1a. Unauthenticated Remote Code Execution can occur via Arbitrary File…
CVE-2023-42034 — CVSS 8.8 (high): Visualware MyConnection Server doRTAAccessCTConfig Cross-Site Scripting Authentication Bypass Vulnerability. This vulnerability allows…
CVE-2021-27509 — CVSS 7.5 (high): In Visualware MyConnection Server before 11.0b build 5382, each published report is not associated with its own access code.
CVE-2023-42032 — CVSS 7.5 (high): Visualware MyConnection Server doRTAAccessUPass Exposed Dangerous Method Information Disclosure Vulnerability. This vulnerability allows…
CVE-2023-42033 — CVSS 7.2 (high): Visualware MyConnection Server doPostUploadfiles Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote…
CVE-2023-42035 — CVSS 6.5 (medium): Visualware MyConnection Server doIForward XML External Entity Processing Information Disclosure Vulnerability. This vulnerability allows…
CVE-2015-2043 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Visualware MyConnection Server 8.2b allow remote attackers to inject arbitrary web…
CVE-2014-5113 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in test.php in Visualware MyConnection Server 9.7i allow remote attackers to inject…