InfowareCVEs & Vulnerabilities
3 CVEs affecting Infoware products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
3 CVEs→ All vendors
Most Affected Products
mapsuite 4
CVE-2014-2843MEDIUM
Cross-site scripting (XSS) vulnerability in infoware MapSuite MapAPI 1.0.x before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
31 Jan 2020
6.1
CVSS
CVE-2014-2233MEDIUM
Server-side request forgery (SSRF) vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to trigger requests to intranet servers via unspecified vectors.
1 Dec 2014
5.0
CVSS
CVE-2014-2232MEDIUM
Absolute path traversal vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to read arbitrary files via unspecified vectors.
1 Dec 2014
5.0
CVSS
← PrevPage 1 / 1Next →