2 matches found
CVE-2014-3272
CVE-2014-3272 affects Cisco Tidal Enterprise Scheduler Agent (TES) 6.1 and earlier. The vulnerability stems from insufficient validation of Tidal Job Buffers (TJB) parameters , enabling a local, authenticated attacker to gain privileges (root) via crafted TJB usage. The issue is a local privilege...
CVE-2017-3846
CVE-2017-3846 describes an arbitrary file read vulnerability in Cisco Workload Automation and Cisco Tidal Enterprise Scheduler. The issue arises in the Client Manager Server due to insufficient input validation, enabling an unauthenticated, remote attacker to retrieve any file by sending a crafte...