Known Vulnerabilities for Biostar 2 by Supremainc
Listed below are 8 of the newest known vulnerabilities associated with "Biostar 2" by "Supremainc".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-9509 json | An unhandled exception in Suprema BioStar 2 (Server), versions 2.9.8, 2.9.10, and 2.9.11, that allows an unauthenticated remo... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2026-9508 json | Incorrect permission settings on a critical resource in Suprema BioStar 2 (versions 2.9.3 through 2.9.11) that allow backup f... | Not Provided | 2026-05-29 | 2026-05-29 |
| CVE-2023-33366 json | A SQL injection vulnerability exists in Suprema BioStar 2 before 2.9.1, which allows authenticated users to inject arbitrary ... | 8.8 - HIGH | 2023-08-03 | 2023-08-09 |
| CVE-2023-33365 json | A path traversal vulnerability exists in Suprema BioStar 2 before 2.9.1, which allows unauthenticated attackers to fetch arbi... | 7.5 - HIGH | 2023-08-03 | 2023-08-09 |
| CVE-2023-33364 json | An OS Command injection vulnerability exists in Suprema BioStar 2 before V2.9.1, which allows authenticated users to execute ... | 8.8 - HIGH | 2023-08-03 | 2023-08-08 |
| CVE-2023-33363 json | An authentication bypass vulnerability exists in Suprema BioStar 2 before 2.9.1, which allows unauthenticated users to access... | 7.5 - HIGH | 2023-08-03 | 2023-08-08 |
| CVE-2023-31923 json | Suprema BioStar 2 before 2022 Q4, v2.9.1 has Insecure Permissions. A vulnerability in the web application allows an authentic... | 8.8 - HIGH | 2023-05-22 | 2023-06-01 |
| CVE-2023-27167 json | Suprema BioStar 2 v2.8.16 was discovered to contain a SQL injection vulnerability via the values parameter at /users/absence?... | 8.8 - HIGH | 2023-03-29 | 2026-07-09 |
| CVE-2022-38351 json | A vulnerability in Suprema BioStar (aka Bio Star) 2 v2.8.16 allows attackers to escalate privileges to System Administrator v... | 8.8 - HIGH | 2022-09-19 | 2022-09-21 |
| CVE-2020-15050 json | An issue was discovered in the Video Extension in Suprema BioStar 2 before 2.8.2. Remote attackers can read arbitrary files f... | 7.5 - HIGH | 2020-07-13 | 2023-01-27 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Supremainc | Biostar 2 | 2.8.2 | |||
| Application | Supremainc | Biostar 2 | 2.8.1 | |||
| Application | Supremainc | Biostar 2 | 2.8.0 | |||
| Application | Supremainc | Biostar 2 | 2.7.8 | |||
| Application | Supremainc | Biostar 2 | 2.7.7 | |||
| Application | Supremainc | Biostar 2 | 2.7.6 | |||
| Application | Supremainc | Biostar 2 | 2.7.5 | |||
| Application | Supremainc | Biostar 2 | 2.7.4 | |||
| Application | Supremainc | Biostar 2 | 2.7.3 | |||
| Application | Supremainc | Biostar 2 | 2.7.2 | |||
| Application | Supremainc | Biostar 2 | 2.7.14 | |||
| Application | Supremainc | Biostar 2 | 2.7.12 | |||
| Application | Supremainc | Biostar 2 | 2.7.11 | |||
| Application | Supremainc | Biostar 2 | 2.7.10 | |||
| Application | Supremainc | Biostar 2 | 2.7.1 | |||
| Application | Supremainc | Biostar 2 | 2.7.0 | |||
| Application | Supremainc | Biostar 2 | 2.7 | |||
| Application | Supremainc | Biostar 2 | 2.6.4 | |||
| Application | Supremainc | Biostar 2 | 2.6.3 | |||
| Application | Supremainc | Biostar 2 | 2.6.2 |