Filtered by vendor Openfind
Subscribe
Search
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2020-12776 | 1 Openfind | 1 Mail2000 | 2021-07-21 | 9.0 HIGH | 7.2 HIGH |
| Openfind Mail2000 contains Broken Access Control vulnerability, which can be used to execute unauthorized commands after attackers obtain the administrator access token or cookie. | |||||
| CVE-2020-25849 | 1 Openfind | 2 Mailaudit, Mailgates | 2020-11-13 | 9.0 HIGH | 8.8 HIGH |
| MailGates and MailAudit products contain Command Injection flaw, which can be used to inject and execute system commands from the cgi parameter after attackers obtain the user’s access token. | |||||