📦 Spectrum

Loftware Spectrum through version 4.6 has an unprotected JMX Registry, allowing unauthenticated remote attackers to access Java Management Extensions (JMX) services. This affects all organizations run...

Loftware Spectrum versions before 4.6 HF14 contain a hard-coded password vulnerability that allows attackers to gain unauthorized access to the system. This affects all organizations running vulnerabl...

Loftware Spectrum versions before 4.6 HF14 have a critical authentication bypass vulnerability that allows unauthenticated attackers to execute privileged functions. This affects all organizations run...

This vulnerability allows authenticated attackers to perform XML External Entity (XXE) attacks against Loftware Spectrum print management software. Attackers could read sensitive files, conduct server...

CVE-2023-37229 is a Server-Side Request Forgery (SSRF) vulnerability in Loftware Spectrum versions before 5.1 that allows attackers to make unauthorized requests from the vulnerable server to internal...