Vulnerabilities > Elvexys

DATE	CVE	VULNERABILITY TITLE	RISK
2022-12-29	CVE-2022-4778	Path Traversal vulnerability in Elvexys Streamx 6.02.01/6.04.34 StreamX applications from versions 6.02.01 to 6.04.34 are affected by a path traversal vulnerability that allows authenticated users to get unauthorized access to files on the server's filesystem. StreamX applications using StreamView HTML component with the public web server feature activated are affected. network low complexity elvexys CWE-22	6.5
2022-12-29	CVE-2022-4779	Path Traversal vulnerability in Elvexys Streamx 6.02.01/6.04.34 StreamX applications from versions 6.02.01 to 6.04.34 are affected by a logic bug that allows to bypass the implemented authentication scheme. StreamX applications using StreamView HTML component with the public web server feature activated are affected. network low complexity elvexys CWE-22 critical	9.8
2022-12-29	CVE-2022-4780	Use of Hard-coded Credentials vulnerability in Elvexys Isos Firmware ISOS firmwares from versions 1.81 to 2.00 contain hardcoded credentials from embedded StreamX installer that integrators are not forced to change. local low complexity elvexys CWE-798	7.8

Vulnerabilities > Elvexys {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Elvexys"}]}