CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vasco: Security Vulnerabilities

CVE-2015-7349

Cross-site scripting (XSS) vulnerability in the sample feedback.inc file in VASCO DIGIPASS authentication plug-in for Citrix Web Interface allows remote attackers to inject arbitrary web script or HTML via the failmessage parameter.

CVSS Score

6.1

EPSS Score

0.005

Published

2017-09-28

CVE-2013-7292

VASCO IDENTIKEY Authentication Server (IAS) 3.4.x allows remote authenticated users to bypass Active Directory (AD) authentication by entering only a DIGIPASS one-time password, instead of the intended combination of this one-time password and a multiple-time AD password.

CVSS Score

3.5

EPSS Score

0.002

Published

2014-01-13

Page 1

Vulnerabilities

Vulnerable Software

Vasco: Security Vulnerabilities

Products

Pricing

Contact Us