Aggregates CVE and security vulnerability intelligence across all wallix-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk path handling and related problems; some flaws may lead to vendor impact file overwrite, affecting vendor surface software deployment and vendor surface production workloads scenarios.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-49961 | WALLIX Bastion 7.x, 8.x, 9.x and 10.x and WALLIX Access Manager 3.x and 4.x have Incorrect Access Control which can lead to sensitive data exposure. | [email protected] | 7.5 | 0.35% | 2024-01-08 | 2025-06-18 |
| CVE-2023-46319 | WALLIX Bastion 9.x before 9.0.9 and 10.x before 10.0.5 allows unauthenticated access to sensitive information by bypassing access control on a network access administration web interface. | [email protected] | 7.5 | 0.11% | 2023-10-23 | 2024-11-21 |
| CVE-2023-23592 | WALLIX Access Manager 3.x through 4.0.x allows a remote attacker to access sensitive information. | [email protected] | 7.5 | 0.16% | 2023-02-09 | 2025-03-24 |