YworksCVEs & Vulnerabilities
2 CVEs affecting Yworks products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
yed 2
CVE-2020-25216CRITICAL
yWorks yEd Desktop before 3.20.1 allows code execution via an XSL Transformation when using an XML file in conjunction with a custom stylesheet.
17 Sep 2020
9.8
CVSS
CVE-2020-25215CRITICAL
yWorks yEd Desktop before 3.20.1 allows XXE attacks via an XML or GraphML document.
17 Sep 2020
9.8
CVSS
← PrevPage 1 / 1Next →