Vulnerabilities > Aquaforest > Tiff Server > 4.0

DATE CVE VULNERABILITY TITLE RISK
2020-03-18 CVE-2020-9325 Improper Input Validation vulnerability in Aquaforest Tiff Server 4.0
Aquaforest TIFF Server 4.0 allows Unauthenticated Arbitrary File Download.
network
low complexity
aquaforest CWE-20
5.0
5.0
2020-03-18 CVE-2020-9324 Insufficiently Protected Credentials vulnerability in Aquaforest Tiff Server 4.0
Aquaforest TIFF Server 4.0 allows Unauthenticated SMB Hash Capture via UNC.
network
low complexity
aquaforest CWE-522
5.0
5.0
2020-03-18 CVE-2020-9323 Information Exposure vulnerability in Aquaforest Tiff Server 4.0
Aquaforest TIFF Server 4.0 allows Unauthenticated File and Directory Enumeration via tiffserver/tssp.aspx.
network
low complexity
aquaforest CWE-200
5.0
5.0