11 matches found
CVE-2025-54765
An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to import the appliance configuration, allowing an attacker to control the configuration of the appliance, to include...
CVE-2025-54766
An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to export the appliance configuration, exposing sensitive information...
CVE-2025-54768
An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to download logs from the appliance configuration, exposing sensitive information...
PT-2025-31156 · Appliance · Appliance
Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: An API endpoint intended for web application administrators is accessible to lower-level read-only users. This allows unauthorized access to appliance configuration import functionality, potentiall...
Microsoft Azure Appliance Configuration Manager Installed (Windows)
Binary data microsoftazureapplianceconfigurationmanagerwininstalled.nbin...
Authentication flaw
The Symantec Advanced Secure Gateway ASG and ProxySG web management consoles are susceptible to an authentication bypass vulnerability. An unauthenticated attacker can execute arbitrary CLI commands, view/modify the appliance configuration and policy, and shutdown/restart the appliance...
SSL Renegotiation Process and Session Reuse on ADC Appliance
This article contains information about the SSL renegotiation and session reuse on a ADC appliance. SSL Renegotiation Process on a ADC Appliance The SSL renegotiation process is the new SSL handshake process over an established SSL connection. The SSL renegotiation process can establish another...
How To Change the Unidesk(2.x and 3.x) / App Layering(4.x) appliance IP addresses
The IP address can be changed on Unidesk appliances and the App Layering ELM appliance through the administrator login...
Belden Hirschmann Tofino Xenon Security Appliance Firmware Signature Vulnerability
The Tofino Xenon security appliance is the ideal solution for segmenting control networks into secure zones. An incomplete firmware signature vulnerability exists in the Tofino Xenon security appliance versions prior to 03.2.00. The vulnerability arises because the applianceconfig file is signed...
CVE-2009-5086
Cross-site scripting XSS vulnerability in Appliance Configuration Manager ACM in Juniper IDP 4.1 before 4.1r3 and 4.2 before 4.2r1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2009-5086
CVE-2009-5086 concerns an XSS vulnerability in Juniper IDP ACM (Appliance Configuration Manager). Affected are IDP versions prior to 4.1r3 and prior to 4.2r1, where an attacker can inject arbitrary web script or HTML via unspecified vectors in the ACM web interface. The practical impact is that a...