Extremexos Security Vulnerabilities and Issues — Extremexos CVE List

Lucene search

ExtremenetworksExtremexos

8 matches found

CVE•added 2017/10/23 8:29 a.m.•53 views

CVE-2017-14331

Extreme EXOS 16.x, 21.x, and 22.x allows administrators to bypass the "exsh restricted shell" protection mechanism and obtain an interactive shell.

7.2CVSS6.5AI score0.00043EPSS

CVE•added 2017/10/23 8:29 a.m.•51 views

CVE-2017-14332

Extreme EXOS 15.7, 16.x, 21.x, and 22.x allows remote attackers to hijack sessions by determining SessionID values.

8.1CVSS8AI score0.00499EPSS

CVE•added 2024/05/03 6:15 p.m.•50 views

CVE-2024-27453

In Extreme XOS through 22.6.1.4, a read-only user can escalate privileges to root via a crafted HTTP POST request to the python method of the Machine-to-Machine Interface (MMI).

8.6CVSS7AI score0.00214EPSS

CVE•added 2017/10/23 8:29 a.m.•47 views

CVE-2017-14329

Extreme EXOS 16.x, 21.x, and 22.x allows administrators to obtain a root shell via vectors involving an exsh debug shell.

7.2CVSS6.3AI score0.00036EPSS

CVE•added 2017/10/23 8:29 a.m.•42 views

CVE-2017-14328

Extreme EXOS 15.7, 16.x, 21.x, and 22.x allows remote attackers to trigger a buffer overflow leading to a reboot.

7.8CVSS7.8AI score0.00578EPSS

CVE•added 2017/10/23 8:29 a.m.•42 views

CVE-2017-14330

Extreme EXOS 16.x, 21.x, and 22.x allows administrators to obtain a root shell via vectors involving a privileged process.

7.2CVSS6.2AI score0.00036EPSS

CVE•added 2017/10/23 8:29 a.m.•38 views

CVE-2017-14327

Extreme EXOS 16.x, 21.x, and 22.x allows administrators to read arbitrary files.

4.9CVSS4.8AI score0.00059EPSS

CVE•added 2024/05/14 6:36 a.m.•37 views

CVE-2020-18305

Extreme Networks EXOS before v.22.7 and before v.30.2 was discovered to contain an issue in its Web GUI which fails to restrict URL access, allowing attackers to access sensitive information or escalate privileges.

8CVSS7.2AI score0.00335EPSS