Vulnerabilities > Boodskap

DATE CVE VULNERABILITY TITLE RISK
2022-10-13 CVE-2022-35134 Cross-site Scripting vulnerability in Boodskap IOT Platform 4.4.902
Boodskap IoT Platform v4.4.9-02 contains a cross-site scripting (XSS) vulnerability.
network
low complexity
boodskap CWE-79
5.4
5.4
2022-10-13 CVE-2022-35135 Improper Authentication vulnerability in Boodskap IOT Platform 4.4.902
Boodskap IoT Platform v4.4.9-02 allows attackers to escalate privileges via a crafted request sent to /api/user/upsert/<uuid>.
network
low complexity
boodskap CWE-287
8.8
8.8
2022-10-13 CVE-2022-35136 Missing Authentication for Critical Function vulnerability in Boodskap IOT Platform 4.4.902
Boodskap IoT Platform v4.4.9-02 allows attackers to make unauthenticated API requests.
network
low complexity
boodskap CWE-306
6.5
6.5
2018-07-05 CVE-2018-13325 Integer Overflow or Wraparound vulnerability in Boodskap Growchain
The _sell function of a smart contract implementation for GROWCHAIN (GROW), an Ethereum token, has an integer overflow.
network
low complexity
boodskap CWE-190
7.5
7.5