Aggregates CVE and security vulnerability intelligence across all tmtmakine-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Disclosed issues often relate to vendor risk sql injection and vendor risk command injection; exposure may include vendor impact data exposure in vendor surface production workloads contexts.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-3050 | Reliance on Cookies without Validation and Integrity Checking in a Security Decision vulnerability in TMT Lockcell allows Privilege Abuse, Authentication Bypass. This issue affects Lockcell: before 15. | [email protected] | 9.8 | 1.31% | 2023-06-13 | 2026-06-17 |
| CVE-2023-3049 | Unrestricted Upload of File with Dangerous Type vulnerability in TMT Lockcell allows Command Injection. This issue affects Lockcell: before 15. | [email protected] | 9.8 | 3.71% | 2023-06-13 | 2026-06-17 |
| CVE-2023-3048 | Authorization Bypass Through User-Controlled Key vulnerability in TMT Lockcell allows Authentication Abuse, Authentication Bypass. This issue affects Lockcell: before 15. | [email protected] | 9.8 | 1.29% | 2023-06-13 | 2026-06-17 |
| CVE-2023-3047 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TMT Lockcell allows SQL Injection. This issue affects Lockcell: before 15. | [email protected] | 9.8 | 1.67% | 2023-06-13 | 2026-06-17 |