Vulnerabilities > Marvalglobal > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-07 | CVE-2023-33283 | Inadequate Encryption Strength vulnerability in Marvalglobal MSM Marval MSM through 14.19.0.12476 uses a static encryption key for secrets. | 5.5 |
| 2022-06-28 | CVE-2022-31884 | Unspecified vulnerability in Marvalglobal Marval MSM 14.19.0.12476 Marval MSM v14.19.0.12476 has an Improper Access Control vulnerability which allows a low privilege user to delete other users API Keys including high privilege and the Administrator users API Keys. | 6.5 |
| 2022-06-28 | CVE-2022-31886 | Cross-Site Request Forgery (CSRF) vulnerability in Marvalglobal Marval MSM 14.19.0.12476 Marval MSM v14.19.0.12476 is vulnerable to Cross Site Request Forgery (CSRF). | 6.5 |