sunbirddcim dctrack CVE Vulnerabilities (4)

CVEs: 4 CPE versions: View versions table

Summary

This page lists publicly disclosed CVE vulnerabilities affecting sunbirddcim dctrack (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.

Showing 14 of 4 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2024-37776 A cross-site scripting (XSS) vulnerability in Sunbird DCIM dcTrack v9.1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in some admin screens. [email protected] 4.8 0.15% 2024-12-16 2025-06-20
CVE-2024-37775 Incorrect access control in Sunbird DCIM dcTrack v9.1.2 allows attackers to create or update a ticket with a location which bypasses an RBAC check. [email protected] 7.5 0.11% 2024-12-16 2025-06-20
CVE-2024-37774 A Cross-Site Request Forgery (CSRF) in Sunbird DCIM dcTrack v9.1.2 allows authenticated attackers to escalate their privileges by forcing an Administrator user to perform sensitive requests in some admin screens. [email protected] 8.0 0.19% 2024-12-16 2025-06-20
CVE-2024-37773 An HTML injection vulnerability in Sunbird DCIM dcTrack 9.1.2 allows attackers authenticated as administrators to inject arbitrary HTML code in an admin screen. [email protected] 4.8 0.17% 2024-12-16 2025-06-20
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence