VYPR

Morpheus

by Music City Networks

CVEs (3)

  • CVE-2022-31261May 24, 2022
    risk 0.00cvss epss 0.01

    An XXE issue was discovered in Morpheus through 5.2.16 and 5.4.x through 5.4.4. A successful attack requires a SAML identity provider to be configured. In order to exploit the vulnerability, the attacker must know the unique SAML callback ID of the configured identity source. A…

  • CVE-2002-0314Jun 25, 2002
    risk 0.00cvss epss 0.02

    fasttrack p2p, as used in (1) KaZaA before 1.5, (2) grokster, and (3) morpheus allows remote attackers to cause a denial of service (memory exhaustion) via a series of client-to-client messages, which pops up new windows per message.

  • CVE-2002-0315Jun 25, 2002
    risk 0.00cvss epss 0.02

    fasttrack p2p, as used in (1) KaZaA, (2) grokster, and (3) morpheus allows remote attackers to spoof other users by modifying the username and network information in the message header.