Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Eg_manager
(Eginnovations)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 3 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2022-06-02 | CVE-2022-29594 | eG Agent before 7.2 has weak file permissions that enable escalation of privileges to SYSTEM. | Eg_agent, Eg_manager, Eg_rum_collectors, Vm_agent | 7.8 | ||
2020-02-03 | CVE-2020-8591 | eG Manager 7.1.2 allows authentication bypass via a com.egurkha.EgLoginServlet?uname=admin&upass=&accessKey=eGm0n1t0r request. | Eg_manager | N/A | ||
2020-02-03 | CVE-2020-8592 | eG Manager 7.1.2 allows SQL Injection via the user parameter to com.eg.LoginHelperServlet (aka the Forgot Password feature). | Eg_manager | N/A |