ClonosCVEs & Vulnerabilities
2 CVEs affecting Clonos products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
clonos 2
CVE-2019-18418CRITICALpoc
clonos.php in ClonOS WEB control panel 19.09 allows remote attackers to gain full access via change password requests because there is no session management.
24 Oct 2019
9.8
CVSS
CVE-2019-18419MEDIUM
A cross-site scripting (XSS) vulnerability in index.php in ClonOS WEB control panel 19.09 allows remote attackers to inject arbitrary web script or HTML via the lang parameter.
24 Oct 2019
6.1
CVSS
← PrevPage 1 / 1Next →