37 matches found
Sangoma NetBorder / Vega Session Controller Remote Command Execution
Description Sangoma NetBorder / Vega Session Controller before 2.3.12-80-GA allows remote unauthenticated attackers to execute arbitrary commands via the web interface. Technical Details The ShellExec class implemented in api/ShellExec.class.php is extensively used by various PHP scripts in the...
Sangoma NetBorder/Vega Session Controller < 2.3.12-80-GA RCE Vulnerability - Active Check
Sangoma NetBorder/Vega Session Controller is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...
Sangoma NetBorder/Vega Session Controller Command Execution Vulnerability
The Sangoma NetBorder/Vega Session Controller is a session controller device from Sangoma Canada. A security vulnerability exists in Sangoma NetBorder/Vega Session Controller versions prior to 2.3.12-80-GA. A remote attacker can execute arbitrary commands with the help of a web interface...
CVE-2017-17430
Sangoma NetBorder / Vega Session Controller before 2.3.12-80-GA allows remote attackers to execute arbitrary commands via the web interface...
CVE-2017-17430
Sangoma NetBorder / Vega Session Controller before 2.3.12-80-GA allows remote attackers to execute arbitrary commands via the web interface...
CVE-2017-17430
Sangoma NetBorder / Vega Session Controller before 2.3.12-80-GA allows remote attackers to execute arbitrary commands via the web interface...
Design/Logic Flaw
Sangoma NetBorder / Vega Session Controller before 2.3.12-80-GA allows remote attackers to execute arbitrary commands via the web interface...
CVE-2017-17430
Sangoma NetBorder / Vega Session Controller before 2.3.12-80-GA allows remote attackers to execute arbitrary commands via the web interface...
CVE-2017-17430
The connected documents confirm CVE-2017-17430 affects Sangoma NetBorder/Vega Session Controller prior to 2.3.12-80-GA, with a remote code execution vulnerability exploitable via the web interface. This is a network-accessible flaw allowing an attacker to execute arbitrary commands on vulnerable ...
Design/Logic Flaw
Vulnerability in the Oracle Communications WebRTC Session Controller component of Oracle Communications Applications subcomponent: Security Gson. Supported versions that are affected are 7.0, 7.1 and 7.2. Difficult to exploit vulnerability allows low privileged attacker with network access via...
CVE-2017-10153
Vulnerability in the Oracle Communications WebRTC Session Controller component of Oracle Communications Applications subcomponent: Security Gson. Supported versions that are affected are 7.0, 7.1 and 7.2. Difficult to exploit vulnerability allows low privileged attacker with network access via...
CVE-2017-10153
Vulnerability in the Oracle Communications WebRTC Session Controller component of Oracle Communications Applications subcomponent: Security Gson. Supported versions that are affected are 7.0, 7.1 and 7.2. Difficult to exploit vulnerability allows low privileged attacker with network access via...
CVE-2017-10153
Vulnerability in the Oracle Communications WebRTC Session Controller component of Oracle Communications Applications subcomponent: Security Gson. Supported versions that are affected are 7.0, 7.1 and 7.2. Difficult to exploit vulnerability allows low privileged attacker with network access via...
CVE-2017-10153
Vulnerability in the Oracle Communications WebRTC Session Controller component of Oracle Communications Applications subcomponent: Security Gson. Supported versions that are affected are 7.0, 7.1 and 7.2. Difficult to exploit vulnerability allows low privileged attacker with network access via...
CVE-2017-10153
The CVE-2017-10153 issue affects Oracle Communications WebRTC Session Controller (Oracle Communications Applications), specifically the Security (Gson) subcomponent. Affected versions are 7.0, 7.1, and 7.2. The vulnerability allows a low-privilege attacker with network access via multiple protoco...
Design/Logic Flaw
Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 12.1.4, 12.2.2, and 12.3.2; the Oracle Health Sciences Information Manager component in Oracle Health Sciences Applications 1.2.8.3, 2.0.2.3, and 3.0.1.0; the Oracle Healthcare Maste...
CVE-2016-0635
Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 12.1.4, 12.2.2, and 12.3.2; the Oracle Health Sciences Information Manager component in Oracle Health Sciences Applications 1.2.8.3, 2.0.2.3, and 3.0.1.0; the Oracle Healthcare Maste...