Vulnerabilities > Hgiga > Msr45 Isherlock Base

DATE CVE VULNERABILITY TITLE RISK
2020-12-31 CVE-2020-25848 Improper Authentication vulnerability in Hgiga products
HGiga MailSherlock contains weak authentication flaw that attackers grant privilege remotely with default password generation mechanism.
network
low complexity
hgiga CWE-287
critical
 9.8
9.8
2019-06-03 CVE-2019-9883 Cross-Site Request Forgery (CSRF) vulnerability in Hgiga products
Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vulnerability.
network
low complexity
hgiga CWE-352
8.8
8.8
2019-06-03 CVE-2019-9882 Cross-Site Request Forgery (CSRF) vulnerability in Hgiga products
Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vulnerability.
network
low complexity
hgiga CWE-352
8.8
8.8