Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Fireeye Subscribe
Filtered by product Email Malware Protection System
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-28970 1 Fireeye 2 Email Malware Protection System, Ex 3500 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
eMPS 9.0.1.923211 on the Central Management of FireEye EX 3500 devices allows remote authenticated users to conduct SQL injection attacks via the job_id parameter to the email search feature. According to the vendor, the issue is fixed in 9.0.3.
CVE-2021-28969 1 Fireeye 2 Email Malware Protection System, Ex 3500 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
eMPS 9.0.1.923211 on FireEye EX 3500 devices allows remote authenticated users to conduct SQL injection attacks via the sort_by parameter to the email search feature. According to the vendor, the issue is fixed in 9.0.3. NOTE: this is different from CVE-2020-25034 and affects newer versions of the software.
CVE-2020-25034 1 Fireeye 2 Email Malware Protection System, Ex 3500 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
eMPS prior to eMPS 9.0 FireEye EX 3500 devices allows remote authenticated users to conduct SQL injection attacks via the sort, sort_by, search{URL], or search[attachment] parameter to the email search feature.

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024