VYPR
Vendor

Launchpad

Products
4
CVEs
5
Across products
5
Status
Private

Products

4

Recent CVEs

5
  • CVE-2023-32550CriJun 6, 2023
    risk 0.60cvss 9.3epss 0.00

    Landscape's server-status page exposed sensitive system information. This data leak included GET requests which contain information to attack and leak further information from the Landscape API.

  • CVE-2021-44686HigDec 7, 2021
    risk 0.49cvss 7.5epss 0.05

    calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service) in html_preprocess_rules in ebooks/conversion/preprocess.py.

  • CVE-2012-0955MedDec 2, 2020
    risk 0.44cvss 6.8epss 0.01

    software-properties was vulnerable to a person-in-the-middle attack due to incorrect TLS certificate validation in softwareproperties/ppa.py. software-properties didn't check TLS certificates under python2 and only checked certificates under python3 if a valid certificate bundle…

  • CVE-2023-32551MedJun 6, 2023
    risk 0.40cvss 6.1epss 0.00

    Landscape allowed URLs which caused open redirection.

  • CVE-2009-4426Dec 28, 2009
    risk 0.03cvss epss 0.02

    Multiple directory traversal vulnerabilities in Ignition 1.2, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the blog parameter to (1) comment.php and (2) view.php.