Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2019-18883

Malware in sbrugna...

6.3CVSS5.6AI score0.0035EPSS
Exploits0References3
CNVD
CNVDadded 2020/03/31 12:0 a.m.2 views

Vertiv Avocent UMG-4000 Web Interface Cross-Site Scripting Vulnerability (CNVD-2020-25873)

The Vertiv Avocent UMG-4000 is a Universal Management Gateway appliance from Vertiv Technologies Vertiv. It supports real-time management, monitoring, access and control of IT devices and infrastructure. A cross-site scripting vulnerability exists in the web interface of the Vertiv Avocent UMG-40...

6.3CVSS6.5AI score0.00179EPSS
Exploits0
CNVD
CNVDadded 2020/03/31 12:0 a.m.2 views

Vertiv Avocent UMG-4000 Web Interface OS Command Injection Vulnerability

The Vertiv Avocent UMG-4000 is a Universal Management Gateway appliance from Vertiv Technologies Vertiv. It supports real-time management, monitoring, access and control of IT devices and infrastructure. An operating system command injection vulnerability exists in the web interface of the Vertiv...

9CVSS8.4AI score0.00692EPSS
Exploits0
Prion
Prionadded 2020/03/30 10:15 p.m.13 views

Command injection

The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to command injection because the application incorrectly neutralizes code syntax before executing. Since all commands within the web application are executed as root, this could allow a remote attacker authenticated...

9CVSS7.4AI score0.00692EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2020/03/30 10:15 p.m.12 views

Cross site scripting

The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to reflected XSS in an HTTP POST parameter. The web application does not neutralize user-controllable input before displaying to users in a web page, which could allow a remote attacker authenticated with a user accou...

3.5CVSS6.1AI score0.0035EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2020/03/30 8:50 p.m.65 views

CVE-2019-9509

The CVE-2019-9509 entry concerns the Vertiv Avocent UMG-4000 web interface (version 4.2.1.19). The vulnerability is a reflected XSS in an HTTP POST parameter, where the web application does not neutralize user-supplied input before rendering on a page. An attacker authenticated with a user accoun...

6.3CVSS5.8AI score0.0035EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2020/03/30 8:50 p.m.12 views

CVE-2019-9509 The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to reflected cross site scripting

The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to reflected XSS in an HTTP POST parameter. The web application does not neutralize user-controllable input before displaying to users in a web page, which could allow a remote attacker authenticated with a user accou...

6.3CVSS6.8AI score0.0035EPSS
Exploits0References2
Rows per page
Query Builder