Lucene search

F-secure Policy Manager Security Vulnerabilities

cve

CVE-2023-43763

Certain WithSecure products allow XSS via an unvalidated parameter in the endpoint. This affects WithSecure Policy Manager 15 on Windows and...

6.1CVSS

6AI Score

0.0005EPSS

2023-09-22 05:15 AM

cve

CVE-2023-43762

Certain WithSecure products allow Unauthenticated Remote Code Execution via the web server (backend). This affects WithSecure Policy Manager 15 and Policy Manager Proxy...

9.8CVSS

7.5AI Score

0.004EPSS

2023-09-22 05:15 AM

cve

CVE-2022-38165

Arbitrary file write in F-Secure Policy Manager through 2022-08-10 allows unauthenticated users to write the file with the contents in arbitrary locations on the F-Secure Policy Manager...

9.8CVSS

9.4AI Score

0.002EPSS

2022-11-17 11:15 PM

cve

CVE-2022-38162

Reflected cross-site scripting (XSS) vulnerabilities in WithSecure through 2022-08-10) exists within the F-Secure Policy Manager due to an unvalidated parameter in the endpoint, which allows remote attackers to provide a malicious...

6.1CVSS

6.1AI Score

0.001EPSS

2022-10-25 07:15 PM