Vulnerabilities > Cloverdx > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-01 | CVE-2021-42776 | XXE vulnerability in Cloverdx CloverDX Server before 5.11.2 and and 5.12.x before 5.12.1 allows XXE during configuration import. | 7.7 |
| 2021-06-09 | CVE-2021-29995 | Cross-Site Request Forgery (CSRF) vulnerability in Cloverdx A Cross Site Request Forgery (CSRF) issue in Server Console in CloverDX through 5.9.0 allows remote attackers to execute any action as the logged-in user (including script execution). | 8.8 |