VYPR

Inventory Agent

by Snow Software

CVEs (4)

  • CVE-2024-1150HigFeb 8, 2024
    risk 0.51cvss 7.8epss 0.00

    Improper Verification of Cryptographic Signature vulnerability in Snow Software Inventory Agent on Unix allows File Manipulation through Snow Update Packages.This issue affects Inventory Agent: through 7.3.1.

  • CVE-2024-1149HigFeb 8, 2024
    risk 0.51cvss 7.8epss 0.00

    Improper Verification of Cryptographic Signature vulnerability in Snow Software Inventory Agent on MacOS, Snow Software Inventory Agent on Windows, Snow Software Inventory Agent on Linux allows File Manipulation through Snow Update Packages.This issue affects Inventory Agent:…

  • CVE-2021-27579HigFeb 23, 2021
    risk 0.51cvss 7.8epss 0.00

    Snow Inventory Agent through 6.7.0 on Windows uses CPUID to report on processor types and versions that may be deployed and in use across an IT environment. A privilege-escalation vulnerability exists if CPUID is enabled, and thus it should be disabled via configuration settings.

  • CVE-2023-7169MedFeb 8, 2024
    risk 0.39cvss 6.0epss 0.00

    Authentication Bypass by Spoofing vulnerability in Snow Software Snow Inventory Agent on Windows allows Signature Spoof.This issue affects Snow Inventory Agent: through 6.14.5. Customers advised to upgrade to version 7.0