Filtered by vendor Eginnovations Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-29594 2 Eginnovations, Microsoft 5 Eg Agent, Eg Manager, Eg Rum Collectors and 2 more 2024-11-21 7.8 High
eG Agent before 7.2 has weak file permissions that enable escalation of privileges to SYSTEM.
CVE-2020-8592 1 Eginnovations 1 Eg Manager 2024-11-21 9.8 Critical
eG Manager 7.1.2 allows SQL Injection via the user parameter to com.eg.LoginHelperServlet (aka the Forgot Password feature).
CVE-2020-8591 1 Eginnovations 1 Eg Manager 2024-11-21 9.8 Critical
eG Manager 7.1.2 allows authentication bypass via a com.egurkha.EgLoginServlet?uname=admin&upass=&accessKey=eGm0n1t0r request.