Cybelesoft Thinfinity_workspace

5 CVEs affecting Cybelesoft Thinfinity_workspace. Latest disclosed: 2024-11-13. Critical: 1, High: 3.

Top CVEs affecting Cybelesoft Thinfinity_workspace
CVESeverityScorePublishedSummary
CVE-2024-40404Critical9.82024-11-13Cybele Software Thinfinity Workspace before v7.0.2.113 was discovered to contain an access control issue in the API endpoint where Web Sockets connections are…
CVE-2024-40405High8.12024-11-13Incorrect access control in Cybele Software Thinfinity Workspace before v7.0.3.109 allows attackers to gain access to a secondary broker via a crafted request.
CVE-2024-40407High7.52024-11-13A full path disclosure in Cybele Software Thinfinity Workspace before v7.0.2.113 allows attackers to obtain the root path of the application via unspecified ve…
CVE-2024-40408High7.32024-11-13Cybele Software Thinfinity Workspace before v7.0.2.113 was discovered to contain an access control issue in the Create Profile section. This vulnerability allo…
CVE-2024-40410Medium4.82024-11-13Cybele Software Thinfinity Workspace before v7.0.2.113 was discovered to contain a hardcoded cryptographic key used for encryption.