Known vulnerabilities in MeterSphere MeterSphere 2.7.0

[]

Known vulnerabilities in MeterSphere MeterSphere 2.7.0

Vendor: MeterSphere

Website: https://metersphere.io/

Total Security Bulletins: 7

Security bulletins (7)

Secuity bulletin	Severity	Status	Published
SB2023122809: Authorization bypass through user-controlled key in MeterSphere	Low	Patched	28.12.2023
SB2023122808: Hard-coded credentials in MeterSphere Selenium VNC	High	Patched	28.12.2023
SB2023122807: Path traversal in MeterSphere	Medium	Patched	28.12.2023
SB2023122806: Improper access control in MeterSphere	Medium	Patched	28.12.2023
SB2023122804: Denial of service in MeterSphere	Medium	Patched	28.12.2023
SB2023122803: Authorization bypass through user-controlled key in MeterSphere	Low	Patched	28.12.2023
SB2023031555: Multiple vulnerabilities in MeterSphere	Medium	Patched	15.03.2023