Vulnerabilities in CERT/CC
9 resultsCVE-2022-40238HIGHA Remote Code Injection vulnerability exists in CERT software prior to version 1.50.5EPSS 1.2%CVE-2022-25799—An open redirect vulnerability exists in CERT/CC VINCE software prior to version 1.50.0EPSS 0.5%CVE-2024-9953MEDIUMPotential DoS Vulnerability in CERT VINCE Software Before Version 3.0.8EPSS 0.4%CVE-2022-40248—An HTML injection vulnerability exists in CERT/CC VINCE software prior to version 1.50.4EPSS 0.4%CVE-2022-40257—An HTML injection vulnerability exists in CERT/CC VINCE software prior to version 1.50.4EPSS 0.4%CVE-2026-35467HIGHPrivate Key stored as extractable in browser IndexeDBEPSS 0.2%CVE-2026-35466MEDIUMStored XSS via unsanitized input from remote serviceEPSS 0.2%CVE-2024-10469MEDIUMCERT/CC VINCE versions before 3.0.9 allows authenticated user to access User Management view.EPSS 0.2%CVE-2026-8142MEDIUMCVE-2026-8142EPSS 0.1%