Bevywise

bevywise

3 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-35612 1Bevywise 1Mqttroute Jun 17, 2026 Oct 13, 2022 N/A· v4 5.4 MEDIUM· v3 N/A· v2 A cross-site scripting (XSS) vulnerability in MQTTRoute v3.3 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the dashboard name text field.
CVE-2022-35611 1Bevywise 1Mqttroute Jun 17, 2026 Oct 13, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 A Cross-Site Request Forgery (CSRF) in MQTTRoute v3.3 and below allows attackers to create and remove dashboards.
CVE-2019-6241 1Bevywise 1Mqttroute Jun 17, 2026 Jun 10, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Bevywise MQTTRoute 1.1 build 1018-002, a connect packet combined with a malformed unsubscribe request packet can be used to cause a Denial of Service attack against the broker.