VYPR

Miss Marple Enterprise Edition

by COMPAREX

CVEs (2)

  • CVE-2018-19234HigDec 20, 2018
    risk 0.57cvss 8.8epss 0.03

    The Miss Marple Updater Service in COMPAREX Miss Marple Enterprise Edition before 2.0 allows remote attackers to execute arbitrary code with SYSTEM privileges via vectors related to missing update validation.

  • CVE-2018-19233HigDec 20, 2018
    risk 0.51cvss 7.8epss 0.01

    COMPAREX Miss Marple Enterprise Edition before 2.0 allows local users to execute arbitrary code by reading the user name and encrypted password hard-coded in an Inventory Agent configuration file.