Home/Product/dfir iris
Product

dfir iris

15 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-22783
< 2.4.24
Iris is a web collaborative platform that helps incident responders share technical details during investigations. Prior to 2.4.24
9.6CRITICAL
 CVE-2024-25624
< 2.4.6
Iris is a web collaborative platform aiming to help incident responders sharing technical details during investigations. Due to an
6.8MEDIUM
 CVE-2024-25640
< 2.4.0
Iris is a web collaborative platform that helps incident responders share technical details during investigations. A stored Cross-
4.6MEDIUM
 CVE-2023-50712
< 2.3.7
Iris is a web collaborative platform aiming to help incident responders sharing technical details during investigations. A stored
4.6MEDIUM
 CVE-2023-30615
< 2.2.1
Iris is a web collaborative platform aiming to help incident responders sharing technical details during investigations. A stored
6.3MEDIUM
 CVE-2022-37028
all versions
ISAMS 22.2.3.2 is prone to stored Cross-site Scripting (XSS) attack on the title field for groups, allowing an attacker to store a
5.4MEDIUM
 CVE-2021-23772
<= 12.1.8
This affects all versions of package github.com/kataras/iris; all versions of package github.com/kataras/iris/v12. The unsafe hand
7.5HIGH
 CVE-2020-28406
all versions
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user t
6.5MEDIUM
 CVE-2020-28405
all versions
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user t
8.8HIGH
 CVE-2020-28404
all versions
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user t
6.5MEDIUM
 CVE-2020-28403
all versions
A Cross-Site Request Forgery (CSRF) vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an attacker
8.0HIGH
 CVE-2020-28402
all versions
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user t
5.4MEDIUM
 CVE-2020-28401
all versions
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an unauthorized user t
6.5MEDIUM
 CVE-2001-0184
all versions
eEye Iris 1.01 beta allows remote attackers to cause a denial of service via a malformed packet, which causes Iris to crash when a
 CVE-2000-0734
all versions
eEye IRIS 1.01 beta allows remote attackers to cause a denial of service via a large number of UDP connections.
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh