ReportizFlow
Filtered by vendor Darktrace
Subscriptions
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-22854 | 1 Darktrace | 1 Threat Visualizer | 2025-01-13 | 6.1 Medium |
| DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 (bundle version 61050) and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an injected HTML form. | ||||
| CVE-2023-29656 | 1 Darktrace | 1 Threat Visualizer | 2024-11-21 | 6.1 Medium |
| An improper authorization vulnerability in Darktrace mobile app (Android) prior to version 6.0.15 allows disabled and low-privilege users to control "antigena" actions(block/unblock traffic) from the mobile application. This vulnerability could create a "shutdown", blocking all ingress or egress traffic in the entire infrastructure where darktrace agents are deployed. | ||||
| CVE-2019-9597 | 1 Darktrace | 1 Enterprise Immune System | 2024-11-21 | 6.5 Medium |
| Darktrace Enterprise Immune System before 3.1 allows CSRF via the /config endpoint. | ||||
| CVE-2019-9596 | 1 Darktrace | 1 Enterprise Immune System | 2024-11-21 | 6.5 Medium |
| Darktrace Enterprise Immune System before 3.1 allows CSRF via the /whitelisteddomains endpoint. | ||||
Page 1 of 1.