Vulnerabilities > Bevywise

DATE	CVE	VULNERABILITY TITLE	RISK
2022-10-13	CVE-2022-35611	Cross-Site Request Forgery (CSRF) vulnerability in Bevywise Mqttroute 3.3 A Cross-Site Request Forgery (CSRF) in MQTTRoute v3.3 and below allows attackers to create and remove dashboards. network low complexity bevywise CWE-352	4.3
2022-10-13	CVE-2022-35612	Cross-site Scripting vulnerability in Bevywise Mqttroute 1.1/2.0 A cross-site scripting (XSS) vulnerability in MQTTRoute v3.3 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the dashboard name text field. network low complexity bevywise CWE-79	5.4
2019-06-10	CVE-2019-6241	Unspecified vulnerability in Bevywise Mqttroute 1.1 In Bevywise MQTTRoute 1.1 build 1018-002, a connect packet combined with a malformed unsubscribe request packet can be used to cause a Denial of Service attack against the broker. network low complexity bevywise	7.5

Vulnerabilities > Bevywise {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Bevywise"}]}