Lucene search
K

5 matches found

NVD
NVD
added 2015/11/12 3:59 a.m.19 views

CVE-2015-7818

The administration-panel web service in IBM System Networking Switch Center SNSC before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows local users to execute arbitrary JSP code with SYSTEM privileges by using the Apache Axis AdminService deployment method to install a .jsp file...

7.2CVSS6.8AI score0.00434EPSS
Exploits0References2
NVD
NVD
added 2015/11/12 3:59 a.m.12 views

CVE-2015-7817

Race condition in the administration-panel web service in IBM System Networking Switch Center SNSC before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and consequently provide FileReader.jsp input containing directory traversal...

7.1CVSS6.4AI score0.01413EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2015/11/10 12:0 a.m.29 views

IBM System Networking Switch Center FileReader.jsp Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose information on vulnerable installations of IBM System Networking Switch Center. Authentication is not required to exploit this vulnerability. The specific flaws exist within the IBM SNSC Web Service, which listens by default on ports 40080 HT...

7.1CVSS6AI score0.01413EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/11/10 12:0 a.m.35 views

IBM System Networking Switch Center Local Privilege Escalation Vulnerability

This vulnerability allows local unprivileged attackers to execute arbitrary code on vulnerable installations of IBM System Networking Switch Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the IBM SNSC Web Service, which listens by default on...

7.2CVSS6.7AI score0.00434EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/11/10 12:0 a.m.30 views

IBM System Networking Switch Center ZipDownload.jsp Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose information on vulnerable installations of IBM System Networking Switch Center. Authentication is not required to exploit this vulnerability. The specific flaws exist within the IBM SNSC Web Service, which listens by default on ports 40080 HT...

7.1CVSS6AI score0.01413EPSS
Exploits0References1
Rows per page
Query Builder