Vulnerabilities (CVE)

Filtered by vendor Atvise Subscribe
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-21184 1 Atvise 1 Atvise 2024-11-21 4.3 MEDIUM 5.9 MEDIUM
An information disclosure vulnerability exists in the License registration functionality of Bachmann Visutec GmbH Atvise 3.5.4, 3.6 and 3.7. A plaintext HTTP request can lead to a disclosure of login credentials. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.
CVE-2011-4883 1 Atvise 1 Webmi2ads 2024-11-21 5.0 MEDIUM N/A
The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 does not properly validate values in HTTP requests, which allows remote attackers to cause a denial of service (resource consumption) via a crafted request.
CVE-2011-4882 1 Atvise 1 Webmi2ads 2024-11-21 5.0 MEDIUM N/A
The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 allows remote attackers to cause a denial of service (application exit) via an unspecified command in an HTTP request.
CVE-2011-4881 1 Atvise 1 Webmi2ads 2024-11-21 5.0 MEDIUM N/A
The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 does not properly check return values from functions, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted HTTP request.
CVE-2011-4880 1 Atvise 1 Webmi2ads 2024-11-21 5.0 MEDIUM N/A
Directory traversal vulnerability in the web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 allows remote attackers to read arbitrary files via a crafted HTTP request.
CVE-2011-4873 1 Atvise 1 Atvise 2024-11-21 5.0 MEDIUM N/A
Unspecified vulnerability in the server in Certec EDV atvise before 2.1 allows remote attackers to cause a denial of service (daemon crash) via crafted requests to TCP port 4840.