Sitevision CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2022-35202	1 Sitevision	1 Sitevision	2025-07-13	5.1 Medium
A security issue in Sitevision version 10.3.1 and older allows a remote attacker, in certain (non-default) scenarios, to gain access to the private keys used for signing SAML Authn requests. The underlying issue is a Java keystore that may become accessible and downloadable via WebDAV. This keystore is protected with a low-complexity, auto-generated password.
CVE-2019-12734	1 Sitevision	1 Sitevision	2024-11-21	8.8 High
SiteVision 4 has Incorrect Access Control.
CVE-2019-12733	1 Sitevision	1 Sitevision	2024-11-21	8.8 High
SiteVision 4 allows Remote Code Execution.

Page 1 of 1.