Vulnerabilities (CVE)

Filtered by vendor Opswat Subscribe

Filtered by product Metadefender

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-32272	1 Opswat	1 Metadefender	2022-06-21	7.5 HIGH	9.8 CRITICAL
OPSWAT MetaDefender Core before 5.1.2, MetaDefender ICAP before 4.12.1, and MetaDefender Email Gateway Security before 5.6.1 have incorrect access control, resulting in privilege escalation.
CVE-2022-32273	1 Opswat	1 Metadefender	2022-06-15	4.0 MEDIUM	4.3 MEDIUM
As a result of an observable discrepancy in returned messages, OPSWAT MetaDefender Core (MDCore) before 5.1.2 could allow an authenticated user to enumerate filenames on the server.
CVE-2018-16275	1 Opswat	1 Metadefender	2020-08-24	6.8 MEDIUM	7.8 HIGH
OPSWAT MetaDefender before v4.11.2 allows CSV injection.