Solismed
by Intesync
CVEs (9)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-16246 | Cri | 0.64 | 9.8 | 0.03 | Dec 12, 2019 | Intesync Solismed 3.3sp1 allows Local File Inclusion (LFI), a different vulnerability than CVE-2019-15931. This leads to unauthenticated code execution. | ||
| CVE-2019-15936 | Cri | 0.64 | 9.8 | 0.02 | Dec 12, 2019 | Intesync Solismed 3.3sp allows Insecure File Upload. | ||
| CVE-2019-15933 | Cri | 0.64 | 9.8 | 0.02 | Dec 12, 2019 | Intesync Solismed 3.3sp has SQL Injection. | ||
| CVE-2019-15932 | Cri | 0.64 | 9.8 | 0.02 | Dec 12, 2019 | Intesync Solismed 3.3sp has Incorrect Access Control. | ||
| CVE-2019-15931 | Cri | 0.64 | 9.8 | 0.03 | Dec 12, 2019 | Intesync Solismed 3.3sp allows Directory Traversal, a different vulnerability than CVE-2019-16246. | ||
| CVE-2019-15934 | Hig | 0.57 | 8.8 | 0.01 | Dec 12, 2019 | Intesync Solismed 3.3sp has CSRF. | ||
| CVE-2019-15935 | Med | 0.40 | 6.1 | 0.01 | Dec 12, 2019 | Intesync Solismed 3.3sp has XSS. | ||
| CVE-2019-17428 | Med | 0.38 | 5.9 | 0.01 | Dec 12, 2019 | An issue was discovered in Intesync Solismed 3.3sp1. An flaw in the encryption implementation exists, allowing for all encrypted data stored within the database to be decrypted. | ||
| CVE-2019-15930 | Med | 0.28 | 4.3 | 0.01 | Dec 12, 2019 | Intesync Solismed 3.3sp allows Clickjacking. |
- risk 0.64cvss 9.8epss 0.03
Intesync Solismed 3.3sp1 allows Local File Inclusion (LFI), a different vulnerability than CVE-2019-15931. This leads to unauthenticated code execution.
- risk 0.64cvss 9.8epss 0.02
Intesync Solismed 3.3sp allows Insecure File Upload.
- risk 0.64cvss 9.8epss 0.02
Intesync Solismed 3.3sp has SQL Injection.
- risk 0.64cvss 9.8epss 0.02
Intesync Solismed 3.3sp has Incorrect Access Control.
- risk 0.64cvss 9.8epss 0.03
Intesync Solismed 3.3sp allows Directory Traversal, a different vulnerability than CVE-2019-16246.
- risk 0.57cvss 8.8epss 0.01
Intesync Solismed 3.3sp has CSRF.
- risk 0.40cvss 6.1epss 0.01
Intesync Solismed 3.3sp has XSS.
- risk 0.38cvss 5.9epss 0.01
An issue was discovered in Intesync Solismed 3.3sp1. An flaw in the encryption implementation exists, allowing for all encrypted data stored within the database to be decrypted.
- risk 0.28cvss 4.3epss 0.01
Intesync Solismed 3.3sp allows Clickjacking.