Vulnerabilities > Verodin > Director
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-21 | CVE-2019-10716 | Improper Privilege Management vulnerability in Verodin Director 3.5.3.1 An Information Disclosure issue in Verodin Director 3.5.3.1 and earlier reveals usernames and passwords of integrated security technologies via a /integrations.json JSON REST API request. | 4.0 |
| 2019-10-21 | CVE-2019-10715 | Cross-site Scripting vulnerability in Verodin Director 3.5.3.1 There is Stored XSS in Verodin Director 3.5.3.0 and earlier via input fields of certain tooltips, and on the Tags, Sequences, and Actors pages. | 3.5 |