249 matches found
CVE-2024-54188
Infoblox NETMRI is affected prior to version 7.6.1. The issue allows remote authenticated users to read arbitrary files with root access due to a vulnerability in NETMRI. A fix is available: upgrade to NETMRI 7.6.1 or later. If upgrading is not immediately possible, apply the vendor’s recommended...
CVE-2025-32813
Infoblox NetMRI
CVE-2025-32815
An issue was discovered in Infoblox NETMRI before 7.6.1. Authentication Bypass via a Hardcoded credential can occur...
CVE-2025-32815
An issue was discovered in Infoblox NETMRI before 7.6.1. Authentication Bypass via a Hardcoded credential can occur...
PT-2025-22492 · Infoblox · Infoblox Netmri
Name of the Vulnerable Software and Affected Versions: Infoblox NETMRI versions prior to 7.6.1 Description: An issue was discovered in Infoblox NETMRI. Authentication bypass can occur due to a hardcoded credential. Recommendations: Update Infoblox NETMRI to version 7.6.1 or later...
CVE-2025-32815
NetMRI
CVE-2025-32814
Infoblox NETMRI prior to 7.6.1 is affected by an unauthenticated SQL injection in the skipjackUsername parameter. Reports (NVD/NCSC/CIRCL/NT) describe that an unauthenticated actor can exploit this to access sensitive data (including encrypted passwords) and potentially compromise the system. The...
Infoblox NETMRI 安全漏洞
Infoblox NETMRI is a network management product from US-based Infoblox, Inc. can automate, provide visibility and continuous insight to help organizations intelligently manage their multi-vendor networks. A security vulnerability exists in Infoblox NETMRI versions prior to 7.6.1 that originates...
CVE-2024-52874
In Infoblox NETMRI before 7.6.1, authenticated users can perform SQL injection attacks...
CVE-2024-52874
An active vulnerability CVE-2024-52874 affects Infoblox NETMRI prior to version 7.6.1. The issue allows authenticated users to perform SQL injection via the product, with the documented impact of high confidentiality, integrity, and availability risks (CVSS v3.1: 8.8). Root cause centers on impro...
CVE-2025-32813
An issue was discovered in Infoblox NETMRI before 7.6.1. Remote Unauthenticated Command Injection can occur...
CVE-2025-32814
An issue was discovered in Infoblox NETMRI before 7.6.1. Unauthenticated SQL Injection can occur...
CVE-2002-2213
The DNS resolver in unspecified versions of Infoblox DNS One, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record RR combined with spoofed...
PT-2025-22487 · Infoblox · Infoblox Netmri
Name of the Vulnerable Software and Affected Versions: Infoblox NETMRI versions prior to 7.6.1 Description: The issue allows remote authenticated users to read arbitrary files with root access. Recommendations: For versions prior to 7.6.1, update to version 7.6.1 or later to resolve the issue...
PT-2025-22509 · Infoblox · Infoblox Netmri
Name of the Vulnerable Software and Affected Versions: Infoblox NETMRI versions prior to 7.6.1 Description: The issue allows authenticated users to perform SQL injection attacks. Recommendations: For versions prior to 7.6.1, update to version 7.6.1 or later to resolve the issue...
PT-2025-22490 · Infoblox · Infoblox Netmri
Name of the Vulnerable Software and Affected Versions: Infoblox NETMRI versions prior to 7.6.1 Description: An issue allows for remote, unauthenticated command injection. The vulnerability is related to insufficient data sanitization at the management level. The get saml request function is...
PT-2025-22491 · Infoblox · Infoblox Netmri
Name of the Vulnerable Software and Affected Versions: Infoblox NETMRI versions prior to 7.6.1 Description: An unauthenticated SQL injection issue exists in Infoblox NETMRI. Exploitation of this issue may allow a remote attacker to execute arbitrary code. The vulnerability is related to the lack ...
Hazy Hawk Attack Spotted Targeting Abandoned Cloud Assets Since 2023
Infoblox reveals Hazy Hawk, a new threat exploiting abandoned cloud resources S3, Azure and DNS gaps since Dec…...
Infoblox NIOS Terrapin Attack (000009589)
The version of Infoblox NIOS installed on the remote host is affected by a vulnerability in OpenSSH. The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted fr...
CVE-2024-36046
Infoblox NIOS through 8.6.4 executes with more privileges than required...