Hippo4j

hippo4j

Vendor: Opengoofy • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-27096 1Opengoofy 1Hippo4j Nov 21, 2024 Mar 27, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Insecure Permissions vulnerability found in OpenGoofy Hippo4j v.1.4.3 allows attacker to obtain sensitive information via the ConfigVerifyController function of the Tenant Management module.
CVE-2023-27094 1Opengoofy 1Hippo4j Feb 26, 2025 Mar 23, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue found in OpenGoofy Hippo4j v.1.4.3 allows attackers to escalate privileges via the ThreadPoolController of the tenant Management module.
CVE-2023-27095 1Opengoofy 1Hippo4j Feb 26, 2025 Mar 16, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Insecure Permissions vulnerability found in OpenGoofy Hippo4j v.1.4.3 allows attacker toescalate privileges via the AddUser method of the UserController function in Tenant Management module.