VYPR
Vendor

Avantra

Products
1
CVEs
6
Across products
6
Status
Private

Products

1

Recent CVEs

6
  • CVE-2026-8670CriMay 22, 2026
    risk 0.62cvss 9.6epss 0.00

    Insufficient session expiration vulnerability in syslink software AG Avantra on Linux, Windows allows Reusing Session IDs (aka Session Replay). This issue affects Avantra: before 25.3.1.

  • CVE-2026-8671HigMay 22, 2026
    risk 0.49cvss 7.5epss 0.00

    Insertion of sensitive information into log file vulnerability in syslink software AG Avantra on Linux, Windows allows Resource Leak Exposure. This issue affects Avantra: before 25.3.0.

  • CVE-2026-3873HigMar 13, 2026
    risk 0.47cvss 7.2epss 0.00

    Use of Hard-coded Credentials vulnerability in Avantra allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Avantra: before 25.3.0.

  • CVE-2024-34519MedMay 5, 2024
    risk 0.44cvss 6.8epss 0.00

    Avantra Server 24.x before 24.0.7 and 24.1.x before 24.1.1 mishandles the security of dashboards, aka XAN-5367. If a user can create a dashboard with an auto-login user, data disclosure may occur. Access control can be bypassed when there is a shared dashboard, and its…

  • CVE-2026-8673MedMay 22, 2026
    risk 0.38cvss 5.9epss 0.00

    Unprotected transport of credentials vulnerability in syslink software AG Avantra on Linux, Windows allows Sniffing Attacks. This issue affects Avantra: before 25.3.0.

  • CVE-2026-8672MedMay 22, 2026
    risk 0.33cvss 5.1epss 0.00

    Use of default password vulnerability in syslink software AG Avantra on Linux, Windows allows Try Common or Default Usernames and Passwords. This issue affects Avantra: before 25.3.0.