Lucene search
K

79 matches found

RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.23 views

CVE-2025-63912

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for data encryption, allowing attackers to trivially reverse the encyption and expose credentials...

7.5CVSS5.9AI score0.00133EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/03/04 1:56 a.m.4 views

CVE-2025-63911

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to contain an authenticated command injection vulnerability...

7.2CVSS5.9AI score0.02323EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/03/04 1:56 a.m.5 views

CVE-2025-63910

An authenticated arbitrary file upload vulnerability in Cohesity TranZman Migration Appliance Release 4.0 Build 14614 allows attackers with Administrator privileges to execute arbitrary code via uploading a crafted patch file...

7.2CVSS6.3AI score0.00356EPSS
Exploits2References1
NVD
NVD
added 2026/03/03 6:16 p.m.15 views

CVE-2025-67840

Multiple authenticated OS command injection vulnerabilities exist in the Cohesity formerly Stone Ram TranZman 4.0 Build 14614 through TZM1757588060SEP2025FULL.depot web application API endpoints including Scheduler and Actions pages. The appliance directly concatenates user-controlled parameters...

7.2CVSS0.03686EPSS
Exploits2References3
OSV
OSV
added 2026/03/03 6:16 p.m.5 views

CVE-2025-67840

Multiple authenticated OS command injection vulnerabilities exist in the Cohesity formerly Stone Ram TranZman 4.0 Build 14614 through TZM1757588060SEP2025FULL.depot web application API endpoints including Scheduler and Actions pages. The appliance directly concatenates user-controlled parameters...

7.2CVSS6.7AI score0.03686EPSS
Exploits2References3
NVD
NVD
added 2026/03/03 6:16 p.m.5 views

CVE-2025-63912

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for data encryption, allowing attackers to trivially reverse the encyption and expose credentials...

7.5CVSS0.00133EPSS
Exploits2References2
NVD
NVD
added 2026/03/03 6:16 p.m.9 views

CVE-2025-63909

Incorrect access control in the component /opt/SRLtzm/bin/TapeDumper of Cohesity TranZman Migration Appliance Release 4.0 Build 14614 allows attackers to escalate privileges to root and read and write arbitrary files...

7.8CVSS0.00329EPSS
Exploits2References2
NVD
NVD
added 2026/03/03 6:16 p.m.5 views

CVE-2025-63910

An authenticated arbitrary file upload vulnerability in Cohesity TranZman Migration Appliance Release 4.0 Build 14614 allows attackers with Administrator privileges to execute arbitrary code via uploading a crafted patch file...

7.2CVSS0.00356EPSS
Exploits2References3
NVD
NVD
added 2026/03/03 6:16 p.m.5 views

CVE-2025-63911

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to contain an authenticated command injection vulnerability...

7.2CVSS0.02323EPSS
Exploits2References2
OSV
OSV
added 2026/03/03 6:16 p.m.4 views

CVE-2025-63911

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to contain an authenticated command injection vulnerability...

7.2CVSS5.8AI score0.02323EPSS
Exploits2References2
OSV
OSV
added 2026/03/03 6:16 p.m.5 views

CVE-2025-63910

An authenticated arbitrary file upload vulnerability in Cohesity TranZman Migration Appliance Release 4.0 Build 14614 allows attackers with Administrator privileges to execute arbitrary code via uploading a crafted patch file...

7.2CVSS6.2AI score0.00356EPSS
Exploits2References3
OSV
OSV
added 2026/03/03 6:16 p.m.5 views

CVE-2025-63909

Incorrect access control in the component /opt/SRLtzm/bin/TapeDumper of Cohesity TranZman Migration Appliance Release 4.0 Build 14614 allows attackers to escalate privileges to root and read and write arbitrary files...

7.8CVSS5.8AI score0.00329EPSS
Exploits2References2
OSV
OSV
added 2026/03/03 6:16 p.m.5 views

CVE-2025-63912

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for data encryption, allowing attackers to trivially reverse the encyption and expose credentials...

7.5CVSS5.8AI score0.00133EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2026/03/03 12:0 a.m.4 views

CVE-2025-63912

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for data encryption, allowing attackers to trivially reverse the encyption and expose credentials...

5.9AI score0.00133EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.10 views

PT-2026-22771

Name of the Vulnerable Software and Affected Versions Cohesity TranZman Migration Appliance version 4.0 Build 14614 Description The Cohesity TranZman Migration Appliance utilizes a weak cryptography algorithm for data encryption. This allows attackers to easily reverse the encryption process and...

7.5CVSS5.8AI score0.00133EPSS
Exploits2References8
ATTACKERKB
ATTACKERKB
added 2026/03/03 12:0 a.m.2 views

CVE-2025-63911

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to contain an authenticated command injection vulnerability...

7.2CVSS5.9AI score0.02323EPSS
Exploits2References3
EUVD
EUVD
added 2026/03/03 12:0 a.m.8 views

EUVD-2025-208246

Multiple authenticated OS command injection vulnerabilities exist in the Cohesity formerly Stone Ram TranZman 4.0 Build 14614 through TZM1757588060SEP2025FULL.depot web application API endpoints including Scheduler and Actions pages. The appliance directly concatenates user-controlled parameters...

7.2CVSS6.8AI score0.03686EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2026/03/03 12:0 a.m.3 views

CVE-2025-63909

Incorrect access control in the component /opt/SRLtzm/bin/TapeDumper of Cohesity TranZman Migration Appliance Release 4.0 Build 14614 allows attackers to escalate privileges to root and read and write arbitrary files...

7.2CVSS6AI score0.00329EPSS
Exploits2References2
CVE
CVE
added 2026/03/03 12:0 a.m.20 views

CVE-2025-63910

CVE-2025-63910 is an authenticated arbitrary file upload vulnerability in Cohesity TranZman Migration Appliance Release 4.0 Build 14614. Exploitation requires Administrator privileges and leverages uploading a crafted patch file to achieve arbitrary code execution. Impact is tied to post-authenti...

7.2CVSS6.3AI score0.00356EPSS
Exploits2References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/03 12:0 a.m.5 views

CVE-2025-63910

An authenticated arbitrary file upload vulnerability in Cohesity TranZman Migration Appliance Release 4.0 Build 14614 allows attackers with Administrator privileges to execute arbitrary code via uploading a crafted patch file...

7.2CVSS6.3AI score0.00356EPSS
Exploits2References3
Rows per page
Query Builder