12 matches found
CVE-2021-32571
In OSS-RC systems of the release 18B and older during data migration procedures certain files containing usernames and passwords are left in the system undeleted but in folders accessible by top privileged accounts only. NOTE: This vulnerability only affects products that are no longer supported ...
CVE-2021-32569
In OSS-RC systems of the release 18B and older customer documentation browsing libraries under ALEX are subject to Cross-Site Scripting. This problem is completely resolved in new Ericsson library browsing tool ELEX used in systems like Ericsson Network Manager. NOTE: This vulnerability only...
CVE-2021-32571
In OSS-RC systems of the release 18B and older during data migration procedures certain files containing usernames and passwords are left in the system undeleted but in folders accessible by top privileged accounts only. NOTE: This vulnerability only affects products that are no longer supported ...
CVE-2021-32571
In OSS-RC systems of the release 18B and older during data migration procedures certain files containing usernames and passwords are left in the system undeleted but in folders accessible by top privileged accounts only. NOTE: This vulnerability only affects products that are no longer supported ...
Code injection
UNSUPPORTED WHEN ASSIGNED In OSS-RC systems of the release 18B and older during data migration procedures certain files containing usernames and passwords are left in the system undeleted but in folders accessible by top privileged accounts only. NOTE: This vulnerability only affects products tha...
CVE-2021-32569
In OSS-RC systems of the release 18B and older customer documentation browsing libraries under ALEX are subject to Cross-Site Scripting. This problem is completely resolved in new Ericsson library browsing tool ELEX used in systems like Ericsson Network Manager. NOTE: This vulnerability only...
Cross site scripting
UNSUPPORTED WHEN ASSIGNED In OSS-RC systems of the release 18B and older customer documentation browsing libraries under ALEX are subject to Cross-Site Scripting. This problem is completely resolved in new Ericsson library browsing tool ELEX used in systems like Ericsson Network Manager. NOTE: Th...
CVE-2021-32571
In OSS-RC systems of the release 18B and older during data migration procedures certain files containing usernames and passwords are left in the system undeleted but in folders accessible by top privileged accounts only. NOTE: This vulnerability only affects products that are no longer supported ...
CVE-2021-32571
CVE-2021-32571 affects OSS-RC systems (release 18B and older). The issue arises during data migration, where files containing usernames and passwords are left undeleted yet reside in folders accessible by top-privileged accounts. Impact is described as exposure to partially confidential data due ...
CVE-2021-32569
In OSS-RC systems of the release 18B and older customer documentation browsing libraries under ALEX are subject to Cross-Site Scripting. This problem is completely resolved in new Ericsson library browsing tool ELEX used in systems like Ericsson Network Manager. NOTE: This vulnerability only...
CVE-2021-32569
CVE-2021-32569 affects OSS-RC systems using ALEX-based customer documentation browsing libraries (OSS-RC release 18B and older). The issue is Cross-Site Scripting caused by inadequate validation in the web-facing components; Red Hat/NVD entries reiterate the same. Affected products are no longer ...
PT-2021-19786 · Ericsson · Ericsson Network Manager +1
Name of the Vulnerable Software and Affected Versions: OSS-RC versions 18B and older Description: The issue affects OSS-RC systems during data migration procedures, where files containing usernames and passwords are left undeleted in folders accessible by top privileged accounts only. This issue...