VYPR
Vendor

Sabreairlinesolutions

Products
8
CVEs
3
Across products
8
Status
Private

Products

8

Recent CVEs

3
  • CVE-2014-4858Jul 26, 2014
    risk 0.00cvss epss 0.01

    Multiple SQL injection vulnerabilities in CWPLogin.aspx in Sabre AirCentre Crew products 2010.2.12.20008 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password field.

  • CVE-2008-4407Oct 3, 2008
    risk 0.00cvss epss 0.00

    XRunSabre in sabre (aka xsabre) 0.2.4b relies on the ability to create /tmp/sabre.log, which allows local users to cause a denial of service (application unavailability) by creating a /tmp/sabre.log file that cannot be overwritten.

  • CVE-2002-1191Oct 28, 2002
    risk 0.00cvss epss 0.02

    The Sabserv client component in Sabre Desktop Reservation Software 4.2 through 4.4 allows remote attackers to cause a denial of service via malformed input to TCP port 1001.