Riello Netman

3 CVEs affecting Riello Netman. Latest disclosed: 2025-12-24. Critical: 1, High: 0.

Top CVEs affecting Riello Netman
CVE	Severity	Score	Published	Summary
`CVE-2025-68916`	Critical	`9.1`	2025-12-24	Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/certsupload.cgi /../ directory traversal for file upload with resultant code execution.
`CVE-2025-68914`	Medium	`6.5`	2025-12-24	Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/login.cgi username SQL Injection. For example, an attacker can delete the LOGINFAILEDTABLE table.
`CVE-2025-68915`	Medium	`5.5`	2025-12-24	Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/loginbanner_w.cgi XSS via a crafted banner.