VYPR
Vendor

Andover Continuum

Products
1
CVEs
3
Across products
3
Status
Private

Products

1

Recent CVEs

3
  • CVE-2020-7480CriMar 23, 2020
    risk 0.64cvss 9.8epss 0.01

    A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists in Andover Continuum (All versions), which could cause files on the application server filesystem to be viewable when an attacker interferes with an application's processing of XML data.

  • CVE-2020-7482MedMar 23, 2020
    risk 0.40cvss 6.1epss 0.01

    A CWE-79:Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists Andover Continuum (All versions), which could cause a Reflective Cross-site Scripting (XSS attack) when using the products' web server.

  • CVE-2020-7481MedMar 23, 2020
    risk 0.40cvss 6.1epss 0.01

    A CWE-79:Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists Andover Continuum (All versions), which could enable a successful Cross-site Scripting (XSS attack) when using the products' web server.