VYPR
Vendor

Nexacro

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2021-26625Apr 19, 2022
    risk 0.00cvss epss 0.01

    Insufficient Verification of input Data leading to arbitrary file download and execute was discovered in Nexacro platform. This vulnerability is caused by an automatic update function that does not verify input data except version information. Remote attackers can use this…

  • CVE-2021-26612Nov 30, 2021
    risk 0.00cvss epss 0.01

    An improper input validation leading to arbitrary file creation was discovered in copy method of Nexacro platform. Remote attackers use copy method to execute arbitrary command after the file creation included malicious code.