VYPR
Vendor

Vasco

Products
4
CVEs
3
Across products
4
Status
Private

Products

4

Recent CVEs

3
  • CVE-2025-25539MedMay 21, 2025
    risk 0.42cvss 6.5epss 0.00

    Local File Inclusion vulnerability in Vasco v3.14and before allows a remote attacker to obtain sensitive information via help menu.

  • CVE-2015-7349MedSep 28, 2017
    risk 0.40cvss 6.1epss 0.01

    Cross-site scripting (XSS) vulnerability in the sample feedback.inc file in VASCO DIGIPASS authentication plug-in for Citrix Web Interface allows remote attackers to inject arbitrary web script or HTML via the failmessage parameter.

  • CVE-2013-7292Jan 13, 2014
    risk 0.00cvss epss 0.01

    VASCO IDENTIKEY Authentication Server (IAS) 3.4.x allows remote authenticated users to bypass Active Directory (AD) authentication by entering only a DIGIPASS one-time password, instead of the intended combination of this one-time password and a multiple-time AD password.