Vulnerabilities > Tufin > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-02-09 CVE-2020-13460 Cross-Site Request Forgery (CSRF) vulnerability in Tufin Securetrack 18.1
Multiple Cross-Site Request Forgery (CSRF) vulnerabilities were present in Tufin SecureTrack, affecting all versions prior to R20-2 GA.
network
tufin CWE-352
6.8
2021-01-20 CVE-2020-13133 Cross-site Scripting vulnerability in Tufin Securechange
Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS.
network
tufin CWE-79
4.3
2019-06-19 CVE-2018-18406 XXE vulnerability in Tufin Securetrack 18.1
An issue was discovered in Tufin SecureTrack 18.1 with TufinOS 2.16 build 1179(Final).
network
low complexity
tufin CWE-611
6.5