Lucene search
Knowage-suiteKnowage
2 matches found
CVE-2019-14278
In Knowage through 6.1.1, an unauthenticated user can enumerated valid usernames via the ChangePwdServlet page.
5.3CVSS5.4AI score0.00505EPSS
CVE-2019-13349
In Knowage through 6.1.1, an authenticated user that accesses the users page will obtain all user password hashes.
4.9CVSS5.2AI score0.011EPSS