Vulnerabilities > Logrhythm

DATE	CVE	VULNERABILITY TITLE	RISK
2022-12-13	CVE-2021-41943	Cross-site Scripting vulnerability in Logrhythm 7.4.9 Logrhythm Web Console 7.4.9 allows for HTML tag injection through Contextualize Action -> Create a new Contextualize Action -> Inject your HTML tag in the name field. network low complexity logrhythm CWE-79	6.1
2020-12-17	CVE-2020-25096	Unspecified vulnerability in Logrhythm Platform Manager 7.4.9 LogRhythm Platform Manager (PM) 7.4.9 has Incorrect Access Control. network low complexity logrhythm	8.8
2020-12-17	CVE-2020-25095	Cross-Site Request Forgery (CSRF) vulnerability in Logrhythm Platform Manager 7.4.9 LogRhythm Platform Manager (PM) 7.4.9 allows CSRF. network low complexity logrhythm CWE-352	8.8
2020-12-17	CVE-2020-25094	OS Command Injection vulnerability in Logrhythm Platform Manager 7.4.9 LogRhythm Platform Manager 7.4.9 allows Command Injection. network low complexity logrhythm CWE-78 critical	9.8

Vulnerabilities > Logrhythm {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Logrhythm"}]}