Lucene search
+L

5 matches found

ATTACKERKB
ATTACKERKB
added 2022/03/24 3:15 p.m.8 views

CVE-2022-0551

Improper Input Validation vulnerability in project file upload in Nozomi Networks Guardian and CMC allows an authenticated attacker with admin or import manager roles to execute unattended commands on the appliance using web server user privileges. This issue affects: Nozomi Networks Guardian...

8.6CVSS7.3AI score0.00868EPSS
Exploits0References2
OSV
OSV
added 2022/03/24 3:15 p.m.4 views

CVE-2022-0551

Improper Input Validation vulnerability in project file upload in Nozomi Networks Guardian and CMC allows an authenticated attacker with admin or import manager roles to execute unattended commands on the appliance using web server user privileges. This issue affects: Nozomi Networks Guardian...

7.2CVSS5.9AI score0.00868EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/03/24 2:15 p.m.19 views

CVE-2022-0551 Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0

Improper Input Validation vulnerability in project file upload in Nozomi Networks Guardian and CMC allows an authenticated attacker with admin or import manager roles to execute unattended commands on the appliance using web server user privileges. This issue affects: Nozomi Networks Guardian...

8.6CVSS7.2AI score0.00868EPSS
Exploits0References1
Cisco Threats
Cisco Threats
added 2018/01/03 4:32 p.m.9 views

Threat Outbreak Alert RuleID31696: Email Messages Distributing Malicious Software on January 3, 2018

Medium Alert ID: 56351 First Published: 2018 January 3 16:32 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31696 may contain the following files: Name |...

Exploits0
RedHat Linux
RedHat Linux
added 2015/09/02 4:28 p.m.8 views

dashbuilder: XXE/SSRF vulnerability

A flaw was found in the dashbuilder import facility: the DocumentBuilders instantiated in org.jboss.dashboard.export.ImportManagerImpl did not disable external entities. This could allow an attacker to perform a variety of XML External Entity XXE and Server-Side Request Forgery SSRF attacks...

7.5CVSS5.7AI score0.02244EPSS
Exploits0References4
Rows per page
Query Builder