VYPR
Vendor

ReCrystallize

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2024-26331HigApr 30, 2024
    risk 0.54cvss 7.5epss 0.49

    ReCrystallize Server 5.10.0.0 uses a authorization mechanism that relies on the value of a cookie, but it does not bind the cookie value to a session ID. Attackers can easily modify the cookie value, within a browser or by implementing client-side code outside of a browser.…

  • CVE-2024-28269HigApr 30, 2024
    risk 0.47cvss 7.2epss 0.01

    ReCrystallize Server 5.10.0.0 allows administrators to upload files to the server. The file upload is not restricted, leading to the ability to upload of malicious files. This could result in a Remote Code Execution.