VYPR

webMethods Glue

by Software AG

CVEs (2)

  • CVE-2023-6578HigDec 7, 2023
    risk 0.48cvss 7.3epss 0.01

    A vulnerability classified as critical has been found in Software AG WebMethods 10.11.x/10.15.x. Affected is an unknown function of the file wm.server/connect/. The manipulation leads to improper access controls. It is possible to launch the attack remotely. To access a file…

  • CVE-2007-2048Apr 16, 2007
    risk 0.03cvss epss 0.04

    Directory traversal vulnerability in /console in the Management Console in webMethods Glue 6.5.1 and earlier allows remote attackers to read arbitrary system files via a .. (dot dot) in the resource parameter.