Vulnerabilities > Yellowfinbi > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-09-14 CVE-2020-19586 Cross-site Scripting vulnerability in Yellowfinbi Business Intelligence 7.3
Incorrect Access Control issue in Yellowfin Business Intelligence 7.3 allows remote attackers to escalate privilege via MIAdminStyles.i4 Admin UI.
network
low complexity
yellowfinbi CWE-79
critical
 9.0
9.0