Filtered by vendor Emqx
Subscriptions
Filtered by product Emqx
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-52136 | 1 Emqx | 1 Emqx | 2025-08-12 | 3 Low |
| In EMQX before 5.8.6, administrators can install arbitrary novel plugins via the Dashboard web interface. NOTE: the Supplier's position is that this is the intended behavior; however, 5.8.6 adds a defense-in-depth feature in which a plugin's acceptability (for later Dashboard installation) is set by the "emqx ctl plugins allow" CLI command. | ||||
| CVE-2023-37781 | 1 Emqx | 1 Emqx | 2024-11-21 | 6.5 Medium |
| An issue in the emqx_sn plugin of EMQX v4.3.8 allows attackers to execute a directory traversal via uploading a crafted .txt file. | ||||
| CVE-2021-46434 | 1 Emqx | 1 Emqx | 2024-11-21 | 5.3 Medium |
| EMQ X Dashboard V3.0.0 is affected by username enumeration in the "/api /v3/auth" interface. When a user login, the application returns different results depending on whether the account is correct, that allowed an attacker to determine if a given username was valid | ||||
Page 1 of 1.