Venki Supravizio Bpm
3 CVEs affecting Venki Supravizio Bpm. Latest disclosed: 2025-01-13. Critical: 1, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-46479 | Critical | 9.9 | 2025-01-13 | Venki Supravizio BPM through 18.0.1 was discovered to contain an arbitrary file upload vulnerability. An authenticated attacker may upload a malicious file, le… |
CVE-2024-46480 | High | 8.4 | 2025-01-13 | An NTLM hash leak in Venki Supravizio BPM up to 18.0.1 allows authenticated attackers with Application Administrator access to escalate privileges on the under… |
CVE-2024-46481 | High | 7.2 | 2025-01-13 | The login page of Venki Supravizio BPM up to 18.1.1 is vulnerable to open redirect leading to reflected XSS. |