Vulnerabilities > Intesync > Solismed

DATE CVE VULNERABILITY TITLE RISK
2019-12-12 CVE-2019-17428 Inadequate Encryption Strength vulnerability in Intesync Solismed 3.3
An issue was discovered in Intesync Solismed 3.3sp1.
network
intesync CWE-326
4.3
4.3
2019-12-12 CVE-2019-16246 Information Exposure vulnerability in Intesync Solismed 3.3
Intesync Solismed 3.3sp1 allows Local File Inclusion (LFI), a different vulnerability than CVE-2019-15931.
network
low complexity
intesync CWE-200
7.5
7.5
2019-12-12 CVE-2019-15936 Unrestricted Upload of File with Dangerous Type vulnerability in Intesync Solismed 3.3
Intesync Solismed 3.3sp allows Insecure File Upload.
network
low complexity
intesync CWE-434
7.5
7.5
2019-12-12 CVE-2019-15935 Cross-site Scripting vulnerability in Intesync Solismed 3.3
Intesync Solismed 3.3sp has XSS.
network
intesync CWE-79
4.3
4.3
2019-12-12 CVE-2019-15934 Cross-Site Request Forgery (CSRF) vulnerability in Intesync Solismed 3.3
Intesync Solismed 3.3sp has CSRF.
network
intesync CWE-352
6.8
6.8
2019-12-12 CVE-2019-15933 SQL Injection vulnerability in Intesync Solismed 3.3
Intesync Solismed 3.3sp has SQL Injection.
network
low complexity
intesync CWE-89
7.5
7.5
2019-12-12 CVE-2019-15932 Missing Authentication for Critical Function vulnerability in Intesync Solismed 3.3
Intesync Solismed 3.3sp has Incorrect Access Control.
network
low complexity
intesync CWE-306
7.5
7.5
2019-12-12 CVE-2019-15931 Path Traversal vulnerability in Intesync Solismed 3.3
Intesync Solismed 3.3sp allows Directory Traversal, a different vulnerability than CVE-2019-16246.
network
low complexity
intesync CWE-22
7.5
7.5
2019-12-12 CVE-2019-15930 Improper Restriction of Rendered UI Layers or Frames vulnerability in Intesync Solismed 3.3
Intesync Solismed 3.3sp allows Clickjacking.
network
intesync CWE-1021
4.3
4.3