An information disclosure vulnerability exists in the License registration functionality of Bachmann Visutec GmbH Atvise 3.5.4, 3.6 and 3.7. A plaintext HTTP request can lead to a disclosure of login credentials. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.
Max CVSS
5.9
EPSS Score
0.13%
Published
2022-06-17
Updated
2022-06-30
Unspecified vulnerability in the server in Certec EDV atvise before 2.1 allows remote attackers to cause a denial of service (daemon crash) via crafted requests to TCP port 4840.
Max CVSS
5.0
EPSS Score
0.28%
Published
2012-01-19
Updated
2012-01-20
2 vulnerabilities found