Browse all 4 CVE security advisories affecting Impronta. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Impronta is a software provider specializing in digital signature and document authentication solutions. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, with four CVEs documented. Security researchers have identified authentication bypass weaknesses and insecure default configurations in their implementations. While no major public security incidents have been reported, the consistent pattern of vulnerabilities in authentication and access control components suggests potential risks for organizations relying on their technology. Their core functionality involves document verification, making any compromise particularly concerning for integrity-sensitive environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-1108 | Insufficient data authenticity vulnerability in Janto — JantoCWE-345 | 8.6 | High | 2025-02-07 |
| CVE-2025-1107 | Unverified password change vulnerability in Janto — JantoCWE-620 | 9.9 | Critical | 2025-02-07 |
This page lists every published CVE security advisory associated with Impronta. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.