Lucene search
K

115 matches found

Vulnrichment
Vulnrichment
added 2023/05/10 12:0 a.m.14 views

CVE-2023-32569

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2.800 and 8.x before 8.0.410. The InfoScale VIOM web application is vulnerable to SQL Injection in some of the areas of the application. This allows attackers who must have admin credentials to submit arbitrary SQL...

7.2CVSS9.8AI score0.00582EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/05/10 12:0 a.m.7 views

PT-2023-23879 · Veritas · Veritas Infoscale Operations Manager

Name of the Vulnerable Software and Affected Versions: Veritas InfoScale Operations Manager versions prior to 7.4.2.800 Veritas InfoScale Operations Manager versions 8.x prior to 8.0.410 Description: An issue in the InfoScale VIOM web application allows SQL Injection attacks in certain areas,...

9.8CVSS9.9AI score0.00582EPSS
Exploits0References2
CVE
CVE
added 2023/05/10 12:0 a.m.44 views

CVE-2023-32568

CVE-2023-32568: Veritas InfoScale Operations Manager (VIOM) affects VIOM before 7.4.2.800 and 8.x before 8.0.410. The web application does not validate user-supplied data and appends it to OS commands and internal binaries, enabling an attacker with root/administrator privileges to read sensitive...

7.2CVSS6.9AI score0.00701EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/02 12:0 a.m.5 views

PT-2023-8939 · Veritas · Veritas Infoscale Operations Manager

Name of the Vulnerable Software and Affected Versions: Veritas InfoScale Operations Manager versions prior to 7.4.2.800 Veritas InfoScale Operations Manager versions 8.x prior to 8.0.410 Description: The issue arises from the VIOM web application's failure to validate user-supplied data, which is...

8.3CVSS7.3AI score0.00701EPSS
Exploits0References4
CNVD
CNVD
added 2022/03/08 12:0 a.m.16 views

Veritas Infoscale Operations Manager跨站脚本漏洞

Veritas Infoscale Operations Manager is a suite of software from Veritas, Inc. for the management of entire InfoScale deployments. A cross-site scripting vulnerability exists in Veritas InfoScale Operations Manager, which stems from a lack of filtering and escaping of user-submitted parameters in...

4.8CVSS1AI score0.0044EPSS
Exploits0References1
CNVD
CNVD
added 2022/03/08 12:0 a.m.16 views

Veritas InfoScale Operations Manager路径遍历漏洞

Veritas Infoscale Operations Manager is a suite of software from Veritas USA for the management of entire InfoScale deployments. Veritas InfoScale Operations Manager is vulnerable to a path traversal vulnerability in the web server admin/cgi-bin/rulemgr.pl/getfile/, which is caused by a lack of...

6.8CVSS2.8AI score0.02626EPSS
Exploits0References1
NVD
NVD
added 2022/03/04 7:15 p.m.31 views

CVE-2022-26484

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. The web server fails to sanitize admin/cgi-bin/rulemgr.pl/getfile/ input data, allowing a remote authenticated administrator to read arbitrary files on the system via...

6.8CVSS0.02626EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/03/04 7:15 p.m.3 views

CVE-2022-26484

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. The web server fails to sanitize admin/cgi-bin/rulemgr.pl/getfile/ input data, allowing a remote authenticated administrator to read arbitrary files on the system via...

6.8CVSS6.1AI score0.02626EPSS
Exploits0References2
OSV
OSV
added 2022/03/04 7:15 p.m.3 views

CVE-2022-26483

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. A reflected cross-site scripting XSS vulnerability in admin/cgi-bin/listdir.pl allows authenticated remote administrators to inject arbitrary web script or HTML into an HTTP...

4.8CVSS5.8AI score0.0044EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/03/04 7:15 p.m.2 views

CVE-2022-26483

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. A reflected cross-site scripting XSS vulnerability in admin/cgi-bin/listdir.pl allows authenticated remote administrators to inject arbitrary web script or HTML into an HTTP...

4.8CVSS6AI score0.0044EPSS
Exploits0References2
NVD
NVD
added 2022/03/04 7:15 p.m.28 views

CVE-2022-26483

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. A reflected cross-site scripting XSS vulnerability in admin/cgi-bin/listdir.pl allows authenticated remote administrators to inject arbitrary web script or HTML into an HTTP...

4.8CVSS0.0044EPSS
Exploits0References1
OSV
OSV
added 2022/03/04 7:15 p.m.6 views

CVE-2022-26484

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. The web server fails to sanitize admin/cgi-bin/rulemgr.pl/getfile/ input data, allowing a remote authenticated administrator to read arbitrary files on the system via...

4.9CVSS5.9AI score0.02626EPSS
Exploits0References1
Prion
Prion
added 2022/03/04 7:15 p.m.16 views

Directory traversal

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. The web server fails to sanitize admin/cgi-bin/rulemgr.pl/getfile/ input data, allowing a remote authenticated administrator to read arbitrary files on the system via...

6.8CVSS5AI score0.02626EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/03/04 7:15 p.m.17 views

Cross site scripting

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. A reflected cross-site scripting XSS vulnerability in admin/cgi-bin/listdir.pl allows authenticated remote administrators to inject arbitrary web script or HTML into an HTTP...

3.5CVSS4.8AI score0.0044EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/03/04 6:23 p.m.93 views

CVE-2022-26484

Veritas InfoScale Operations Manager (VIOM) is affected by CVE-2022-26484. The issue is a directory traversal vulnerability in the web server’s admin/cgi-bin/rulemgr.pl/getfile/ path, enabling a remote authenticated administrator to read arbitrary files on the system by manipulating resource name...

6.8CVSS5AI score0.02626EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/03/04 6:23 p.m.31 views

CVE-2022-26484

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. The web server fails to sanitize admin/cgi-bin/rulemgr.pl/getfile/ input data, allowing a remote authenticated administrator to read arbitrary files on the system via...

4.9CVSS5.3AI score0.02626EPSS
Exploits0References1
CVE
CVE
added 2022/03/04 6:23 p.m.88 views

CVE-2022-26483

Veritas InfoScale Operations Manager (VIOM) is affected by CVE-2022-26483. A reflected cross-site scripting (XSS) vulnerability exists in admin/cgi-bin/listdir.pl that allows authenticated remote administrators to inject arbitrary web script or HTML into an HTTP GET parameter due to insufficient ...

4.8CVSS4.8AI score0.0044EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/03/04 6:23 p.m.29 views

CVE-2022-26483

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. A reflected cross-site scripting XSS vulnerability in admin/cgi-bin/listdir.pl allows authenticated remote administrators to inject arbitrary web script or HTML into an HTTP...

4.8CVSS5.1AI score0.0044EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/03/04 12:0 a.m.3 views

Veritas InfoScale Operations Manager路径遍历漏洞

Veritas Infoscale Operations Manager is a suite of software from Veritas USA for the management of entire InfoScale deployments. Veritas InfoScale Operations Manager is vulnerable to a path traversal vulnerability in the web server admin/cgi-bin/rulemgr.pl/getfile/, which is caused by a lack of...

6.8CVSS6AI score0.02626EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/06/15 12:0 a.m.5 views

The vulnerability of the Veritas InfoScale backup and data storage application, the Veritas Access data storage system, and the Veritas Cluster Server (VCS) application for clustering open systems lies in the absence of measures to clean incoming data. This allows a malicious actor to execute arbitrary commands.

The vulnerability of the Veritas InfoScale backup and data storage application, the Veritas Access data storage system, and the Veritas Cluster Server VCS for clustering open systems is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability allows a remote...

10CVSS8.1AI score0.06138EPSS
Exploits0References6Affected Software4
Rows per page
Query Builder