2 matches found
CVE-2013-6810
CVE-2013-6810 is an exploitable remote code execution vulnerability in EMC Connectrix Manager Converged Network Edition (CMCNE) via the Inmservlets.war FileUploadController. The issue arises from unauthenticated file upload where a crafted filename can lead to arbitrary file uploads and remote co...
CVE-2014-2276
EMC Connectrix Manager Converged Network Edition (CMCNE) affected before 12.1.5. The FileUploadController servlet fails input validation, enabling an unauthenticated remote attacker to disclose arbitrary files by importing a crafted firmware file (information disclosure). Some sources describe un...