logpoint CVE Vulnerabilities & CVE List (23)

Products (CPE): — CVEs: 23

logpoint vulnerability overview

Aggregates CVE and security vulnerability intelligence across all logpoint-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk cross-site scripting, vendor risk ssrf, and vendor risk file inclusion and related problems; some flaws may lead to vendor impact session compromise and vendor impact file overwrite.

Vulnerability distribution trend (last 24 months)

Showing 2123 of 23 CVEs
«« First « Prev Page 2 / 2 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2022-48684 An issue was discovered in Logpoint before 7.1.1. Template injection was seen in the search template. The search template uses jinja templating for generating dynamic data. This could be abused to achieve code execution. Any user with access to create a search template can leverage this to execute code as the loginspect user. [email protected] 8.4 0.64% 2024-04-27 2026-06-17
CVE-2024-29865 Logpoint before 7.1.0 allows Self-XSS on the LDAP authentication page via the username to the LDAP login form. [email protected] 5.4 0.31% 2024-03-22 2026-06-17
CVE-2023-49950 The Jinja templating in Logpoint SIEM 6.10.0 through 7.x before 7.3.0 does not correctly sanitize log data being displayed when using a custom Jinja template in the Alert view. A remote attacker can craft a cross-site scripting (XSS) payload and send it to any system or device that sends logs to the SIEM. If an alert is created, the payload will execute upon the alert data being viewed with that template, which can lead to sensitive data disclosure. [email protected] 5.4 0.51% 2024-02-03 2026-06-17
«« First « Prev Page 2 / 2 Next »
cvelogic Threat Intelligence