← Back

Gridvis

gridvis

Vendor: Janitza • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-50895
1Janitza
1Gridvis
Sep 19, 2025
Mar 26, 2024
N/A· v4
7.2 HIGH· v3
N/A· v2
In Janitza GridVis through 9.0.66, exposed dangerous methods in the de.janitza.pasw.project.server.ServerDatabaseProject project load functionality allow remote authenticated administrative users to execute arbitrary Gro...Show more
In Janitza GridVis through 9.0.66, exposed dangerous methods in the de.janitza.pasw.project.server.ServerDatabaseProject project load functionality allow remote authenticated administrative users to execute arbitrary Groovy code.Show less
CVE-2023-50894
1Janitza
1Gridvis
Sep 19, 2025
Mar 26, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
In Janitza GridVis through 9.0.66, use of hard-coded credentials in the de.janitza.pasw.feature.impl.activators.PasswordEncryption password encryption function allows remote authenticated administrative users to discover...Show more
In Janitza GridVis through 9.0.66, use of hard-coded credentials in the de.janitza.pasw.feature.impl.activators.PasswordEncryption password encryption function allows remote authenticated administrative users to discover cleartext database credentials contained in error report information.Show less