Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Kiteworks
(Accellion)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-06-23 | CVE-2021-31585 | Accellion Kiteworks before 7.3.1 allows a user with Admin privileges to escalate their privileges by generating SSH passwords that allow local access. | Kiteworks | 6.7 | ||
| 2021-06-23 | CVE-2021-31586 | Accellion Kiteworks before 7.4.0 allows an authenticated user to perform SQL Injection via LDAPGroup Search. | Kiteworks | 8.8 | ||
| 2018-05-24 | CVE-2017-9421 | Authentication Bypass vulnerability in Accellion kiteworks before 2017.01.00 allows remote attackers to execute certain API calls on behalf of a web user using a gathered token via a POST request to /oauth/token. | Kiteworks | 6.5 |