Venki Supravizio Bpm

3 CVEs affecting Venki Supravizio Bpm. Latest disclosed: 2025-01-13. Critical: 1, High: 2.

Top CVEs affecting Venki Supravizio Bpm
CVESeverityScorePublishedSummary
CVE-2024-46479Critical9.92025-01-13Venki Supravizio BPM through 18.0.1 was discovered to contain an arbitrary file upload vulnerability. An authenticated attacker may upload a malicious file, le…
CVE-2024-46480High8.42025-01-13An NTLM hash leak in Venki Supravizio BPM up to 18.0.1 allows authenticated attackers with Application Administrator access to escalate privileges on the under…
CVE-2024-46481High7.22025-01-13The login page of Venki Supravizio BPM up to 18.1.1 is vulnerable to open redirect leading to reflected XSS.