Suremdm Security Vulnerabilities and Issues — Suremdm CVE List

Lucene search

42gearsSuremdm

3 matches found

CVE•added 2019/02/05 3:29 a.m.•65 views

CVE-2018-15657

An SSRF issue was discovered in 42Gears SureMDM before 2018-11-27 via the /api/DownloadUrlResponse.ashx "url" parameter.

7.3CVSS7AI score0.07182EPSS

CVE•added 2019/02/05 3:29 a.m.•46 views

CVE-2018-15658

An issue was discovered in 42Gears SureMDM before 2018-11-27. By visiting the page found at /console/ConsolePage/Master.html, an attacker is able to see the markup that would be presented to an authenticated user. This is caused by the session validation occurring after the initial markup is loaded...

7.5CVSS7.3AI score0.00797EPSS

CVE•added 2019/02/05 3:29 a.m.•40 views

CVE-2018-15656

An issue was discovered in the registration API endpoint in 42Gears SureMDM before 2018-11-27. An attacker can submit a GET request to /api/register/:email, where :email is a base64 encoded e-mail address, to receive confirmation as to whether a user account exists in the system with the specified ...

7.5CVSS7.4AI score0.00316EPSS