Vulnerabilities (CVE)

Filtered by vendor Sap Subscribe
Filtered by product Infrabox
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-33706 1 Sap 1 Infrabox 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
Due to improper input validation in InfraBox, logs can be modified by an authenticated user.
CVE-2021-33668 1 Sap 1 Infrabox 2024-11-21 5.0 MEDIUM 7.5 HIGH
Due to improper input sanitization, specially crafted LDAP queries can be injected by an unauthenticated user. This could partially impact the confidentiality of the application.