Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Emc Subscribe
Filtered by product Sourceone Email Supervisor
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-6843 1 Emc 1 Sourceone Email Supervisor 2016-12-08 5.0 MEDIUM N/A
Reviewer in EMC SourceOne Email Supervisor before 7.2 does not properly limit attempts to authenticate, which makes it easier for remote attackers to obtain access via a brute-force approach.
CVE-2015-6844 1 Emc 1 Sourceone Email Supervisor 2016-12-08 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Reviewer in EMC SourceOne Email Supervisor before 7.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2015-6845 1 Emc 1 Sourceone Email Supervisor 2016-12-08 7.5 HIGH N/A
EMC SourceOne Email Supervisor before 7.2 does not properly employ random values for session IDs, which makes it easier for remote attackers to obtain access by guessing an ID.
CVE-2015-6846 1 Emc 1 Sourceone Email Supervisor 2016-12-07 6.8 MEDIUM N/A
EMC SourceOne Email Supervisor before 7.2 uses hardcoded encryption keys, which makes it easier for attackers to obtain access by examining how a program's code conducts cryptographic operations.