Vulnerabilities > Primx > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-13 | CVE-2023-50439 | Unspecified vulnerability in Primx Zed!, Zedmail and Zonecentral ZED containers produced by PRIMX ZED! for Windows before Q.2020.3 (ANSSI qualification submission), ZED! for Windows before Q.2021.2 (ANSSI qualification submission), ZONECENTRAL for Windows before Q.2021.2 (ANSSI qualification submission), ZONECENTRAL for Windows before 2023.5, or ZEDMAIL for Windows before 2023.5 disclose the original path in which the containers were created, which allows an unauthenticated attacker to obtain some information regarding the context of use (project name, etc.). | 5.3 |
| 2023-12-13 | CVE-2023-50440 | Unspecified vulnerability in Primx Zed!, Zedmail and Zonecentral ZED containers produced by PRIMX ZED! for Windows before Q.2020.3 (ANSSI qualification submission); ZED! for Windows before Q.2021.2 (ANSSI qualification submission); ZONECENTRAL for Windows before Q.2021.2 (ANSSI qualification submission); ZONECENTRAL for Windows before 2023.5; ZEDMAIL for Windows before 2023.5; ZED! for Windows, Mac, Linux before 2023.5; ZEDFREE for Windows, Mac, Linux before 2023.5; or ZEDPRO for Windows, Mac, Linux before 2023.5 can be modified by an unauthenticated attacker to include a UNC reference so that it could trigger network access to an attacker-controlled computer when opened by the victim. | 5.5 |
| 2023-12-13 | CVE-2023-50442 | Unspecified vulnerability in Primx Zonecentral 6.1.2240 Encrypted folders created by PRIMX ZONECENTRAL through 2023.5 can be modified by a local attacker (with appropriate privileges) so that specific file types are excluded from encryption temporarily. | 5.5 |
| 2023-12-13 | CVE-2023-50443 | Unspecified vulnerability in Primx Cryhod 2020.2/2020.3/2021.2 Encrypted disks created by PRIMX CRYHOD for Windows before Q.2020.4 (ANSSI qualification submission) or CRYHOD for Windows before 2023.5 can be modified by an unauthenticated attacker to include a UNC reference so that it could trigger outbound network traffic from computers on which disks are opened. low complexity primx | 4.6 |
| 2023-12-13 | CVE-2023-50441 | Unspecified vulnerability in Primx Zonecentral 6.1.2240 Encrypted folders created by PRIMX ZONECENTRAL for Windows before Q.2021.2 (ANSSI qualification submission) or ZONECENTRAL for Windows before 2023.5 can be modified by an unauthenticated attacker to include a UNC reference so that it could trigger outbound network traffic from computers on which folders are opened. | 5.5 |
| 2019-02-03 | CVE-2019-7312 | Information Exposure vulnerability in Primx Zed, Zedmail and Zonecentral Limited plaintext disclosure exists in PRIMX Zed Entreprise for Windows before 6.1.2240, Zed Entreprise for Windows (ANSSI qualification submission) before 6.1.2150, Zed Entreprise for Mac before 2.0.199, Zed Entreprise for Linux before 2.0.199, Zed Pro for Windows before 1.0.195, Zed Pro for Mac before 1.0.199, Zed Pro for Linux before 1.0.199, Zed Free for Windows before 1.0.195, Zed Free for Mac before 1.0.199, and Zed Free for Linux before 1.0.199. | 5.3 |
| 2018-11-14 | CVE-2018-19279 | Cleartext Storage of Sensitive Information vulnerability in Primx Zonecentral PRIMX ZoneCentral before 6.1.2236 on Windows sometimes leaks the plaintext of NTFS files. | 4.3 |