5 matches found
Microsemi Symmetricom s350i Elevation of Privilege Vulnerability
Microsemi Symmetricom s350i is a clock server from Microsemi Corporation. A security vulnerability exists in Microsemi Symmetricom s350i version 2.70.15. A remote attacker can exploit this vulnerability to gain privileges...
CVE-2014-5070
Symmetricom s350i 2.70.15 allows remote authenticated users to gain privileges via vectors related to pushing unauthenticated users to the login page...
CVE-2014-5068
Summary: CVE-2014-5068 is a directory traversal vulnerability in the web application of Microsemi/Microsemi Symmetricom s350i (version 2.70.15). The issue allows remote attackers to read arbitrary files by using file name prefixes like â../â or â..\â before the target file name. The connected CNV...
Microsemi Symmetricom s350i Cross-Site Scripting Vulnerability
Microsemi Symmetricom s350i is a clock server from Microsemi Corporation. A cross-site scripting vulnerability exists in Microsemi Symmetricom s350i version 2.70.15. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...
Cross site scripting
Cross-site scripting XSS vulnerability in Symmetricom s350i 2.70.15 allows remote attackers to inject arbitrary web script or HTML via vectors involving system logs...