Weincloud

weincloud

Vendor: Weintek • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-37362 1Weintek 1Weincloud Mar 6, 2025 Jul 19, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Weintek Weincloud v0.13.6 could allow an attacker to abuse the registration functionality to login with testing credentials to the official website.
CVE-2023-35134 1Weintek 1Weincloud Nov 21, 2024 Jul 19, 2023 N/A· v4 5.9 MEDIUM· v3 N/A· v2 Weintek Weincloud v0.13.6 could allow an attacker to reset a password with the corresponding account’s JWT token only.
CVE-2023-34429 1Weintek 1Weincloud Nov 21, 2024 Jul 19, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Weintek Weincloud v0.13.6 could allow an attacker to cause a denial-of-service condition for Weincloud by sending a forged JWT token.
CVE-2023-32657 1Weintek 1Weincloud Nov 21, 2024 Jul 19, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Weintek Weincloud v0.13.6 could allow an attacker to efficiently develop a brute force attack on credentials with authentication hints from error message responses.