Lucene search
K

7 matches found

NVD
NVD
added 2011/11/12 12:55 a.m.17 views

CVE-2011-4047

The Dell KACE K2000 System Deployment Appliance allows remote attackers to execute arbitrary commands by leveraging database write access...

9.3CVSS7.7AI score0.03312EPSS
Exploits0References2
NVD
NVD
added 2011/11/12 12:55 a.m.13 views

CVE-2011-4436

Multiple cross-site scripting XSS vulnerabilities in the administrative web interface on the Dell KACE K2000 System Deployment Appliance allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.8AI score0.0074EPSS
Exploits0References2
NVD
NVD
added 2011/11/12 12:55 a.m.18 views

CVE-2011-4046

The Dell KACE K2000 System Deployment Appliance stores the recovery account password in cleartext within a PHP script, which allows context-dependent attackers to obtain sensitive information by examining script source code...

5CVSS6.1AI score0.01335EPSS
Exploits0References2
Prion
Prion
added 2011/11/12 12:55 a.m.18 views

Code injection

The Dell KACE K2000 System Deployment Appliance stores the recovery account password in cleartext within a PHP script, which allows context-dependent attackers to obtain sensitive information by examining script source code...

5CVSS6.7AI score0.01335EPSS
Exploits0References2
Prion
Prion
added 2011/11/12 12:55 a.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the administrative web interface on the Dell KACE K2000 System Deployment Appliance allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS6AI score0.0074EPSS
Exploits0References2
CVE
CVE
added 2011/11/12 12:0 a.m.56 views

CVE-2011-4046

The Dell KACE K2000 System Deployment Appliance stores the recovery account password in cleartext inside a PHP script, enabling context-dependent attackers to read sensitive data from script source. Several connected sources corroborate that this flaw can lead to privilege abuse and unauthorized ...

5CVSS6.2AI score0.01335EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2011/11/12 12:0 a.m.49 views

CVE-2011-4048

Dell KACE K2000 System Deployment Appliance is affected by CVE-2011-4048 due to a default username/password for the read-only reporting account, enabling remote attackers to access the database and obtain sensitive information. The issue is described in multiple sources referencing default creden...

4.3CVSS6.5AI score0.01059EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder