This page lists publicly disclosed CVE vulnerabilities affecting mv idce (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-30496 | SQL injection in Logon Page of IDCE MV's application, version 1.0, allows an attacker to inject SQL payloads in the user field, connecting to a database to access enterprise's private and sensitive information. | [email protected] | 7.5 | 0.31% | 2022-06-02 | 2024-11-21 |
| CVE-2020-23284 | Information disclosure in aspx pages in MV's IDCE application v1.0 allows an attacker to copy and paste aspx pages in the end of the URL application that connect into the database which reveals internal and sensitive information without logging into the web application. | [email protected] | 7.5 | 0.32% | 2021-07-20 | 2024-11-21 |