ManageEngine DataSecurity Plus Path Traversal / Code Execution

XL-2020-001 - DataSecurity Plus Xnode Server - Remote Code Execution via Path Traversal =============================================================================== Identifiers ------------------------------------------------- CVE-2020-11531 XL-20-001 CVSSv3 score...

HP ThinPro 6.x / 7.x Filter Bypass

HP ThinPro - Application filter bypass =============================================================================== Identifiers ------------------------------------------------- CVE-2019-16286 CVSSv3 score ------------------------------------------------- 6.1 AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:...

HP ThinPro 6.x / 7.x Citrix Command Injection

HP ThinPro - Citrix command injection =============================================================================== Identifiers ------------------------------------------------- CVE-2019-18909 CVSSv3 score ------------------------------------------------- 6.1 AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N...

HP ThinPro 6.x / 7.x Privilege Escalation

HP ThinPro - Privilege escalation =============================================================================== Identifiers ------------------------------------------------- CVE-2019-16287 CVSSv3 score ------------------------------------------------- 6.1 AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N...

LibreNMS - Collectd Command Injection (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LibreNMS Collectd Command Injection', 'Description' = %q This module exploits a command injection vulnerability in the Collectd graphing...

ABB IDAL HTTP Server Stack-Based Buffer Overflow

XL-19-011 - ABB IDAL HTTP Server Stack-Based Buffer Overflow Vulnerability ======================================================================== Identifiers ----------- XL-19-011 CVE-2019-7232 ABBVU-IAMF-1902009 CVSS Score ---------- 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected vendor...

ABB IDAL HTTP Server Uncontrolled Format String

XL-19-012 - ABB IDAL HTTP Server Uncontrolled Format String Vulnerability ======================================================================== Identifiers ----------- XL-19-012 CVE-2019-7228 ABBVU-IAMF-1902007 CVSS Score ---------- 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected vendor...

ABB IDAL HTTP Server Authentication Bypass

XL-19-010 - ABB IDAL HTTP Server Authentication Bypass Vulnerability ======================================================================== Identifiers ----------- XL-19-010 CVE-2019-7226 ABBVU-IAMF-1902005 CVSS Score ---------- 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected vendor...

ABB IDAL FTP Server Path Traversal

XL-19-008 - ABB IDAL FTP Server Path Traversal Vulnerability ======================================================================== Identifiers ----------- XL-19-008 CVE-2019-7227 ABBVU-IAMF-1902006 CVSS Score ---------- 7.3 AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N Affected vendor --------------- AB...

ABB IDAL FTP Server Uncontrolled Format String

XL-19-004 - ABB IDAL FTP Server Uncontrolled Format String Vulnerability ======================================================================== Identifiers ----------- XL-19-004 CVE-2019-7230 ABBVU-IAMF-1902008 CVSS Score ---------- 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected vendor...

ABB IDAL FTP Server Buffer Overflow

XL-19-007 - ABB IDAL FTP Server Buffer Overflow Vulnerability ======================================================================== Identifiers ----------- XL-19-007 CVE-2019-7231 ABBVU-IAMF-1902010 CVSS Score ---------- 6.5 AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected vendor --------------- A...