VYPR

@ironmansoftware/powershell Universal

by Ironmansoftware

CVEs (3)

  • CVE-2022-45183HigNov 14, 2022
    risk 0.57cvss 8.8epss 0.01

    Escalation of privileges in the Web Server in Ironman Software PowerShell Universal 2.x and 3.x allows an attacker with a valid app token to retrieve other app tokens by ID via an HTTP web request. Patched Versions are 3.5.3, 3.4.7, and 2.12.6.

  • CVE-2022-45184HigNov 14, 2022
    risk 0.47cvss 7.2epss 0.02

    The Web Server in Ironman Software PowerShell Universal v3.x and v2.x allows for directory traversal outside of the configuration directory, which allows a remote attacker with administrator privilege to create, delete, update, and display files outside of the configuration…

  • CVE-2026-0618Jan 7, 2026
    risk 0.00cvss epss 0.00

    Cross-site Scripting vulnerability in Devolutions PowerShell Universal.This issue affects Powershell Universal: before 4.5.6, before 5.6.13.