Filtered by vendor Azure Access Technology
Subscriptions
Filtered by product Blu-ic2
Subscriptions
Total
6 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-12114 | 1 Azure Access Technology | 2 Blu-ic2, Blu-ic4 | 2025-10-24 | N/A |
| Enabled serial console could potentially leak information that might help attacker to find vulnerabilities.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5. | ||||
| CVE-2025-12104 | 1 Azure Access Technology | 2 Blu-ic2, Blu-ic4 | 2025-10-23 | N/A |
| Outdated and Vulnerable UI Dependencies might potentially lead to exploitation.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5. | ||||
| CVE-2025-12031 | 1 Azure Access Technology | 2 Blu-ic2, Blu-ic4 | 2025-10-23 | N/A |
| HTTP Security Misconfiguration - Lacking Secure and HTTPOnly Attribute may allow reading the sensitive cookies from the javascript contextThis issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5. | ||||
| CVE-2025-11925 | 1 Azure Access Technology | 2 Blu-ic2, Blu-ic4 | 2025-10-21 | N/A |
| Incorrect Content-Type header in one of the APIs (`text/html` instead of `application/json`) replies may potentially allow injection of HTML/JavaScript into reply.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5. | ||||
| CVE-2025-12001 | 1 Azure Access Technology | 2 Blu-ic2, Blu-ic4 | 2025-10-21 | N/A |
| Lack of application manifest sanitation could lead to potential stored XSS.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5. | ||||
| CVE-2025-11832 | 1 Azure Access Technology | 2 Blu-ic2, Blu-ic4 | 2025-10-21 | N/A |
| Allocation of Resources Without Limits or Throttling vulnerability in Azure Access Technology BLU-IC2, Azure Access Technology BLU-IC4 allows Flooding.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5. | ||||
Page 1 of 1.