High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-09-06	CVE-2023-41050	Unspecified vulnerability in Zope Accesscontrol AccessControl provides a general security framework for use in Zope. network low complexity zope	7.7
2023-08-30	CVE-2023-41039	Unspecified vulnerability in Zope Restrictedpython RestrictedPython is a restricted execution environment for Python to run untrusted code. network low complexity zope	7.7
2023-07-03	CVE-2023-36814	Unspecified vulnerability in Zope Products.Cmfcore Products.CMFCore are the key framework services for the Zope Content Management Framework (CMF). network low complexity zope	7.5
2021-08-02	CVE-2021-32811	Unspecified vulnerability in Zope Accesscontrol and Zope Zope is an open-source web application server. network low complexity zope	7.2
2021-07-30	CVE-2021-32807	Unspecified vulnerability in Zope Accesscontrol The module `AccessControl` defines security policies for Python code used in restricted code within Zope applications. network low complexity zope	7.2
2021-07-01	CVE-2021-36089	Out-of-bounds Write vulnerability in Zope Grok Grok 7.6.6 through 9.2.0 has a heap-based buffer overflow in grk::FileFormatDecompress::apply_palette_clr (called from grk::FileFormatDecompress::applyColour). local low complexity zope CWE-787	7.8
2021-05-21	CVE-2021-32633	Path Traversal vulnerability in multiple products Zope is an open-source web application server. network low complexity plone zope CWE-22	8.8
2017-09-25	CVE-2015-7293	Cross-Site Request Forgery (CSRF) vulnerability in multiple products Multiple cross-site request forgery (CSRF) vulnerabilities in Zope Management Interface 4.3.7 and earlier, and Plone before 5.x. network low complexity plone zope CWE-352	8.8