Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-14253 | 1 Gss | 1 Vitalsesp | 2026-01-15 | N/A | 4.9 MEDIUM |
|
Vitals ESP developed by Galaxy Software Services has an Arbitrary File Read vulnerability, allowing privileged remote attackers to exploit Absolute Path Traversal to download arbitrary system files.
|
|||||
| CVE-2025-14254 | 1 Gss | 1 Vitalsesp | 2026-01-15 | N/A | 6.5 MEDIUM |
|
Vitals ESP developed by Galaxy Software Services has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents.
|
|||||
| CVE-2025-14255 | 1 Gss | 1 Vitalsesp | 2026-01-15 | N/A | 6.5 MEDIUM |
|
Vitals ESP developed by Galaxy Software Services has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents.
|
|||||