Vulnerabilities > Ysoft

DATE CVE VULNERABILITY TITLE RISK
2024-10-22 CVE-2022-23861 Cross-site Scripting vulnerability in Ysoft Safeq 6.0
Multiple Stored Cross-Site Scripting vulnerabilities were discovered in Y Soft SAFEQ 6 Build 53.
network
low complexity
ysoft CWE-79
5.4
2024-10-22 CVE-2022-23862 Missing Authentication for Critical Function vulnerability in Ysoft Safeq 6.0
A Local Privilege Escalation issue was discovered in Y Soft SAFEQ 6 Build 53.
local
low complexity
ysoft CWE-306
7.8
2023-07-13 CVE-2023-35833 Cleartext Transmission of Sensitive Information vulnerability in Ysoft Safeq Server 6.0
An issue was discovered in YSoft SAFEQ 6 Server before 6.0.82.
network
low complexity
ysoft CWE-319
6.5
2022-09-06 CVE-2022-38176 Unspecified vulnerability in Ysoft Safeq 6.0
An issue was discovered in YSoft SAFEQ 6 before 6.0.72.
local
low complexity
ysoft
7.8
2021-07-14 CVE-2021-31859 Incorrect Permission Assignment for Critical Resource vulnerability in Ysoft Safeq 6.0.55
Incorrect privileges in the MU55 FlexiSpooler service in YSoft SafeQ 6 6.0.55 allows local user privilege escalation by overwriting the executable file via an alternative data stream.
local
low complexity
ysoft CWE-732
7.8
2019-03-21 CVE-2018-15498 Authentication Bypass by Capture-replay vulnerability in Ysoft Safeq Server Client 6.0.13.1
YSoft SafeQ Server 6 allows a replay attack.
network
high complexity
ysoft CWE-294
8.1