18 matches found
CVE-2022-26484
An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. The web server fails to sanitize admin/cgi-bin/rulemgr.pl/getfile/ input data, allowing a remote authenticated administrator to read arbitrary files on the system via...
EUVD-2023-42221
Malicious code in bioql PyPI...
EUVD-2022-31041
Malicious code in bioql PyPI...
CVE-2023-38404
The XPRTLD web application in Veritas InfoScale Operations Manager VIOM before 8.0.0.410 allows an authenticated attacker to upload all types of files to the server. An authenticated attacker can then execute the malicious file to perform command execution on the remote server...
Command injection
The XPRTLD web application in Veritas InfoScale Operations Manager VIOM before 8.0.0.410 allows an authenticated attacker to upload all types of files to the server. An authenticated attacker can then execute the malicious file to perform command execution on the remote server...
CVE-2023-38404
The XPRTLD web application in Veritas InfoScale Operations Manager VIOM before 8.0.0.410 allows an authenticated attacker to upload all types of files to the server. An authenticated attacker can then execute the malicious file to perform command execution on the remote server...
CVE-2023-32569
An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2.800 and 8.x before 8.0.410. The InfoScale VIOM web application is vulnerable to SQL Injection in some of the areas of the application. This allows attackers who must have admin credentials to submit arbitrary SQL...
CVE-2023-32568
An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2.800 and 8.x before 8.0.410. The VIOM web application does not validate user-supplied data and appends it to OS commands and internal binaries used by the application. An attacker with root/administrator level...
Design/Logic Flaw
An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2.800 and 8.x before 8.0.410. The VIOM web application does not validate user-supplied data and appends it to OS commands and internal binaries used by the application. An attacker with root/administrator level...
CVE-2023-32569
An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2.800 and 8.x before 8.0.410. The InfoScale VIOM web application is vulnerable to SQL Injection in some of the areas of the application. This allows attackers who must have admin credentials to submit arbitrary SQL...
CVE-2023-32568
An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2.800 and 8.x before 8.0.410. The VIOM web application does not validate user-supplied data and appends it to OS commands and internal binaries used by the application. An attacker with root/administrator level...
PT-2023-8939 · Veritas · Veritas Infoscale Operations Manager
Name of the Vulnerable Software and Affected Versions: Veritas InfoScale Operations Manager versions prior to 7.4.2.800 Veritas InfoScale Operations Manager versions 8.x prior to 8.0.410 Description: The issue arises from the VIOM web application's failure to validate user-supplied data, which is...
Veritas InfoScale Operations Manager路径遍历漏洞
Veritas Infoscale Operations Manager is a suite of software from Veritas USA for the management of entire InfoScale deployments. Veritas InfoScale Operations Manager is vulnerable to a path traversal vulnerability in the web server admin/cgi-bin/rulemgr.pl/getfile/, which is caused by a lack of...
Veritas Infoscale Operations Manager跨站脚本漏洞
Veritas Infoscale Operations Manager is a suite of software from Veritas, Inc. for the management of entire InfoScale deployments. A cross-site scripting vulnerability exists in Veritas InfoScale Operations Manager, which stems from a lack of filtering and escaping of user-submitted parameters in...
CVE-2022-26483
An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. A reflected cross-site scripting XSS vulnerability in admin/cgi-bin/listdir.pl allows authenticated remote administrators to inject arbitrary web script or HTML into an HTTP...
CVE-2022-26484
An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. The web server fails to sanitize admin/cgi-bin/rulemgr.pl/getfile/ input data, allowing a remote authenticated administrator to read arbitrary files on the system via...
CVE-2022-26483
An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. A reflected cross-site scripting XSS vulnerability in admin/cgi-bin/listdir.pl allows authenticated remote administrators to inject arbitrary web script or HTML into an HTTP...
Veritas Infoscale Operations Manager Unauthorized Operation Vulnerability
Veritas Infoscale Operations Manager is a suite of software from Veritas that is used to manage the entire InfoScale deployment. An unauthorized operation vulnerability exists in Veritas Infoscale Operations Manager, which could be exploited by an attacker to perform an unauthorized operation...