All 3 CVE vulnerabilities found in OVA based Connect, with AI-generated Chinese analysis, references, and POCs.
Vendor: Saviynt
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-3840 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-79 | 6.1 | - | 2025-04-21 |
| CVE-2025-3838 | Improper Authorization in the installer for the EOL OVA based connect component CWE-863 | 8.8 | - | 2025-04-21 |
| CVE-2025-3837 | Improper Input Validation vulnerability in the End of Life (EOL) OVA based connect component CWE-20 | 9.8 | - | 2025-04-21 |
All 3 known CVE vulnerabilities affecting OVA based Connect with full Chinese analysis, references, and POCs where available.