Vulnerabilities > 42Gears > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-27 | CVE-2023-2335 | Insufficiently Protected Credentials vulnerability in 42Gears Surelock Plaintext Password in Registry vulnerability in 42gears surelock windows surelockwinsetupv2.40.0.Exe on Windows (Registery modules) allows Retrieve Admin user credentials This issue affects surelock windows: from 2.3.12 through 2.40.0. | 7.5 |
| 2023-04-27 | CVE-2023-2331 | Unquoted Search Path or Element vulnerability in 42Gears Surelock Unquoted service Path or Element vulnerability in 42Gears Surelock Windows SureLock Service (NixService.Exe) on Windows application will allows to insert arbitrary code into the service. This issue affects Surelock Windows : from 2.3.12 through 2.40.0. | 7.8 |
| 2019-02-05 | CVE-2018-15658 | Information Exposure vulnerability in 42Gears Suremdm 6.31/6.34/6.35 An issue was discovered in 42Gears SureMDM before 2018-11-27. | 7.5 |
| 2019-02-05 | CVE-2018-15657 | Server-Side Request Forgery (SSRF) vulnerability in 42Gears Suremdm 6.31/6.34/6.35 An SSRF issue was discovered in 42Gears SureMDM before 2018-11-27 via the /api/DownloadUrlResponse.ashx "url" parameter. | 7.3 |
| 2019-02-05 | CVE-2018-15656 | Information Exposure vulnerability in 42Gears Suremdm 6.31/6.34/6.35 An issue was discovered in the registration API endpoint in 42Gears SureMDM before 2018-11-27. | 7.5 |