Vulnerabilities > Wowza > Streaming Engine > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-14 | CVE-2020-9004 | Missing Authentication for Critical Function vulnerability in Wowza Streaming Engine A remote authenticated authorization-bypass vulnerability in Wowza Streaming Engine 4.8.0 and earlier allows any read-only user to issue requests to the administration panel in order to change functionality. | 9.0 |
| 2019-03-21 | CVE-2018-19365 | Path Traversal vulnerability in Wowza Streaming Engine 4.7.4.0.1 The REST API in Wowza Streaming Engine 4.7.4.01 allows traversal of the directory structure and retrieval of a file via a remote, specifically crafted HTTP request. | 9.1 |