Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Janitza Subscribe
Filtered by product Gridvis
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-50894 1 Janitza 1 Gridvis 2025-09-19 N/A 8.8 HIGH
In Janitza GridVis through 9.0.66, use of hard-coded credentials in the de.janitza.pasw.feature.impl.activators.PasswordEncryption password encryption function allows remote authenticated administrative users to discover cleartext database credentials contained in error report information.
CVE-2023-50895 1 Janitza 1 Gridvis 2025-09-19 N/A 7.2 HIGH
In Janitza GridVis through 9.0.66, exposed dangerous methods in the de.janitza.pasw.project.server.ServerDatabaseProject project load functionality allow remote authenticated administrative users to execute arbitrary Groovy code.