Vulnerabilities (CVE)

Filtered by vendor Allegro Subscribe
Filtered by product Allegro
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-43978 1 Allegro 1 Allegro 2024-11-21 5.5 MEDIUM 7.1 HIGH
Allegro WIndows 3.3.4152.0, embeds software administrator database credentials into its binary files, which allows users to access and modify data using the same credentials.
CVE-2021-42110 1 Allegro 1 Allegro 2024-11-21 6.2 MEDIUM 7.1 HIGH
An issue was discovered in Allegro Windows (formerly Popsy Windows) before 3.3.4156.1. A standard user can escalate privileges to SYSTEM if the FTP module is installed, because of DLL hijacking.