Service Manager Security Vulnerabilities and Issues — Service Manager CVE List

Lucene search

EasyvistaService Manager

5 matches found

CVE•added 2023/01/10 9:15 p.m.•53 views

CVE-2022-38492

An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. One parameter allows SQL injection. Version 2022.1.110.1.02 fixes the vulnerability.

8.8CVSS9AI score0.00078EPSS

CVE•added 2022/10/20 11:15 a.m.•47 views

CVE-2021-33231

Cross Site Scripting (XSS) vulnerability in New equipment page in EasyVista Service Manager 2018.1.181.1 allows remote attackers to run arbitrary code via the notes field.

5.4CVSS5.4AI score0.00155EPSS

CVE•added 2023/01/10 9:15 p.m.•41 views

CVE-2022-38490

An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Some parameters allow SQL injection. Version 2022.1.110.1.02 corrects this issue.

9.6CVSS9AI score0.00079EPSS

CVE•added 2023/01/10 9:15 p.m.•35 views

CVE-2022-38489

An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03 It is prone to stored Cross-site Scripting (XSS). Version 2022.1.110.1.02 fixes the vulnerably.

5.4CVSS5.3AI score0.00064EPSS

CVE•added 2023/01/10 9:15 p.m.•33 views

CVE-2022-38491

An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Part of the application does not implement protection against brute-force attacks. Version 2022.1.133.0 corrects this issue.

8.2CVSS7.5AI score0.00126EPSS