VYPR

Weincloud

by Weintek

CVEs (4)

  • CVE-2023-34429HigJul 19, 2023
    risk 0.49cvss 7.5epss 0.01

    Weintek Weincloud v0.13.6 could allow an attacker to cause a denial-of-service condition for Weincloud by sending a forged JWT token.

  • CVE-2023-35134HigJul 19, 2023
    risk 0.48cvss 7.4epss 0.00

    Weintek Weincloud v0.13.6 could allow an attacker to reset a password with the corresponding account’s JWT token only.

  • CVE-2023-37362HigJul 19, 2023
    risk 0.47cvss 7.2epss 0.01

    Weintek Weincloud v0.13.6 could allow an attacker to abuse the registration functionality to login with testing credentials to the official website.

  • CVE-2023-32657MedJul 19, 2023
    risk 0.34cvss 5.3epss 0.00

    Weintek Weincloud v0.13.6 could allow an attacker to efficiently develop a brute force attack on credentials with authentication hints from error message responses.