CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Janitza: >> Gridvis Security Vulnerabilities

CVE-2023-50894

In Janitza GridVis through 9.0.66, use of hard-coded credentials in the de.janitza.pasw.feature.impl.activators.PasswordEncryption password encryption function allows remote authenticated administrative users to discover cleartext database credentials contained in error report information.

CVSS Score

8.8

EPSS Score

0.004

Published

2024-03-26

CVE-2023-50895

In Janitza GridVis through 9.0.66, exposed dangerous methods in the de.janitza.pasw.project.server.ServerDatabaseProject project load functionality allow remote authenticated administrative users to execute arbitrary Groovy code.

CVSS Score

7.2

EPSS Score

0.003

Published

2024-03-26

Page 1

Vulnerabilities

Vulnerable Software

Janitza: >> Gridvis Security Vulnerabilities

Products

Pricing

Contact Us