Vulnerabilities (CVE)

Filtered by vendor Dundas Subscribe

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-28409	1 Dundas	1 Dundas Bi	2020-11-18	3.5 LOW	5.4 MEDIUM
The server in Dundas BI through 8.0.0.1001 allows XSS via addition of a Component (e.g., a button) when events such as click, hover, etc. occur.
CVE-2020-28408	1 Dundas	1 Dundas Bi	2020-11-18	3.5 LOW	5.4 MEDIUM
The server in Dundas BI through 8.0.0.1001 allows XSS via an HTML label when creating or editing a dashboard.