Relyum: community verdicts
7 notable / known-exploited Relyum CVEs the community has triaged.
- CVE-2024-44577HIGH 8.8Real · low riskEPSS 1%
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the time_date function.
- CVE-2024-44574HIGH 8.8Real · low riskEPSS 1%
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the sys_conf function.
- CVE-2024-44572HIGH 8.8Real · low riskEPSS 1%
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the sys_mgmt function.
- CVE-2024-44570HIGH 8.8Real · low riskEPSS 0%
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a code injection vulnerability via the getParams function in phpinf.php.
- CVE-2024-44571HIGH 8.8Real · low riskEPSS 0%
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain incorrect access control in the mService function at phpinf.php.
- CVE-2024-44573MED 4.7EPSS 0%
A stored cross-site scripting (XSS) vulnerability in the VLAN configuration of RELY-PCIe v22.2.1 to v23.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
- CVE-2024-44575LOW 3.7EPSS 0%
RELY-PCIe v22.2.1 to v23.1.0 does not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session.