Vulnerabilities > Hyland > Onbase > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-09-11 CVE-2020-25251 Improper Authentication vulnerability in Hyland Onbase
An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below.
network
low complexity
hyland CWE-287
critical
 9.1
9.1
2020-09-11 CVE-2020-25253 SQL Injection vulnerability in Hyland Onbase
An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below.
network
low complexity
hyland CWE-89
critical
 9.8
9.8
2020-09-11 CVE-2020-25254 SQL Injection vulnerability in Hyland Onbase
An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below.
network
low complexity
hyland CWE-89
critical
 9.8
9.8
2020-09-11 CVE-2020-25256 Use of Hard-coded Credentials vulnerability in Hyland Onbase
An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below.
network
low complexity
hyland CWE-798
critical
 9.1
9.1
2020-09-11 CVE-2020-25257 XXE vulnerability in Hyland Onbase
An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below.
network
low complexity
hyland CWE-611
critical
 9.8
9.8
2020-09-11 CVE-2020-25258 Deserialization of Untrusted Data vulnerability in Hyland Onbase
An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below.
network
low complexity
hyland CWE-502
critical
 9.8
9.8
2020-09-11 CVE-2020-25259 Deserialization of Untrusted Data vulnerability in Hyland Onbase
An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below.
network
low complexity
hyland CWE-502
critical
 9.8
9.8
2020-09-11 CVE-2020-25260 Deserialization of Untrusted Data vulnerability in Hyland Onbase
An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below.
network
low complexity
hyland CWE-502
critical
 9.8
9.8