i-pro CVE Vulnerabilities & CVE List (4)

Products (CPE): — CVEs: 4

i-pro vulnerability overview

Aggregates CVE and security vulnerability intelligence across all i-pro-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Disclosed issues often relate to vendor risk cross-site scripting and vendor risk open redirect; exposure may include vendor impact session compromise in vendor surface software deployment contexts.

Vulnerability distribution trend (last 24 months)

Showing 14 of 4 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2023-40705 Stored cross-site scripting vulnerability in Map setting page of VI Web Client prior to 7.9.6 allows a remote authenticated attacker to inject an arbitrary script. [email protected] 5.4 0.11% 2023-09-05 2024-11-21
CVE-2023-40535 Stored cross-site scripting vulnerability in View setting page of VI Web Client prior to 7.9.6 allows a remote authenticated attacker to inject an arbitrary script. [email protected] 5.4 0.11% 2023-09-05 2024-11-21
CVE-2023-39938 Reflected cross-site scripting vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to inject an arbitrary script. [email protected] 6.1 0.26% 2023-09-05 2024-11-21
CVE-2023-38574 Open redirect vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL. [email protected] 6.1 0.14% 2023-09-05 2024-11-21
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence