CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-4972 – Information Disclosure in Digital Yepas
https://notcve.org/view.php?id=CVE-2023-4972
Improper Privilege Management vulnerability in Yepas Digital Yepas allows Collect Data as Provided by Users.This issue affects . Vulnerabilidad de gestión de privilegios inadecuada en Yepas Digital Yepas permite recopilar datos proporcionados por los usuarios. Este problema afecta . Incorrect Use of Privileged APIs vulnerability in Yepas Digital Yepas allows Collect Data as Provided by Users.This issue affects Digital Yepas: before 1.0.1. • https://www.usom.gov.tr/bildirim/tr-23-0526 • CWE-269: Improper Privilege Management CWE-648: Incorrect Use of Privileged APIs •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-4702 – Authentication Bypass in Digital Yepas
https://notcve.org/view.php?id=CVE-2023-4702
Authentication Bypass Using an Alternate Path or Channel vulnerability in Yepas Digital Yepas allows Authentication Bypass.This issue affects Digital Yepas: before 1.0.1. Vulnerabilidad de Omisión de Autenticación usando un Canal o Ruta Alternativa en Yepas Digital Yepas permite la omisión de autenticación. Este problema afecta a Digital Yepas: anteriores a 1.0.1. • https://www.usom.gov.tr/bildirim/tr-23-0526 • CWE-288: Authentication Bypass Using an Alternate Path or Channel CWE-306: Missing Authentication for Critical Function •