Known Vulnerabilities for products from AEnrich
Listed below are 11 of the newest known vulnerabilities associated with the vendor "AEnrich".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-6835 json | Not Provided | 2026-04-22 | 2026-04-22 | |
| CVE-2026-6834 json | Not Provided | 2026-04-22 | 2026-04-22 | |
| CVE-2026-6833 json | Not Provided | 2026-04-22 | 2026-04-22 | |
| CVE-2023-20853 json | aEnrich Technology a+HRD has a vulnerability of Deserialization of Untrusted Data within its MSMQ asynchronized message proce... | 9.8 - CRITICAL | 2023-04-27 | 2023-05-08 |
| CVE-2023-20852 json | aEnrich Technology a+HRD has a vulnerability of Deserialization of Untrusted Data within its MSMQ interpreter. An unauthentic... | 9.8 - CRITICAL | 2023-04-27 | 2023-05-08 |
| CVE-2022-39042 json | aEnrich a+HRD has improper validation for login function. An unauthenticated remote attacker can exploit this vulnerability t... | 9.8 - CRITICAL | 2023-01-03 | 2023-01-10 |
| CVE-2022-39041 json | aEnrich a+HRD has insufficient user input validation for specific API parameter. An unauthenticated remote attacker can explo... | 9.8 - CRITICAL | 2023-01-03 | 2023-01-10 |
| CVE-2022-39040 json | aEnrich a+HRD log read function has a path traversal vulnerability. An unauthenticated remote attacker can exploit this vulne... | 7.5 - HIGH | 2023-01-03 | 2023-01-10 |
| CVE-2022-39039 json | aEnrich’s a+HRD has inadequate filtering for specific URL parameter. An unauthenticated remote attacker can exploit this vu... | 9.8 - CRITICAL | 2023-01-03 | 2023-01-10 |
| CVE-2022-28742 json | aEnrich eHRD Learning Management Key Performance Indicator System 5+ has Improper Access Control. The web application does no... | 7.5 - HIGH | 2022-09-09 | 2022-09-14 |
| CVE-2022-28741 json | aEnrich a+HRD 5.x Learning Management Key Performance Indicator System has a local file inclusion (LFI) vulnerability that oc... | 8.1 - HIGH | 2022-09-09 | 2023-08-08 |
| CVE-2022-28740 json | aEnrich eHRD Learning Management Key Performance Indicator System 5+ exposes Sensitive Information to an Unauthorized Actor. | 7.5 - HIGH | 2022-09-09 | 2022-09-14 |
| CVE-2022-26676 json | aEnrich a+HRD has inadequate privilege restrictions, an unauthenticated remote attacker can use the API function to upload an... | 9.8 - CRITICAL | 2022-04-07 | 2022-04-14 |
| CVE-2022-26675 json | aEnrich a+HRD has inadequate filtering for special characters in URLs. An unauthenticated remote attacker can bypass authenti... | 7.5 - HIGH | 2022-04-07 | 2022-04-14 |