System Networking Switch Center Security Vulnerabilities and Issues — System Networking Switch Center CVE List

Lucene search

IbmSystem Networking Switch Center

4 matches found

CVE•added 2015/11/12 3:59 a.m.•38 views

CVE-2015-7820

Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and consequently provide ZipDownload.jsp input containing directory traversal sequ...

7.1CVSS6.6AI score0.00207EPSS

CVE•added 2015/11/12 3:59 a.m.•35 views

CVE-2015-7817

Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and consequently provide FileReader.jsp input containing directory traversal seque...

7.1CVSS6.6AI score0.00207EPSS

CVE•added 2015/11/12 3:59 a.m.•32 views

CVE-2015-7818

The administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows local users to execute arbitrary JSP code with SYSTEM privileges by using the Apache Axis AdminService deployment method to install a .jsp file.

7.2CVSS7AI score0.00046EPSS

CVE•added 2015/11/12 3:59 a.m.•29 views

CVE-2015-7819

The DB service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain sensitive administrator-account information via a request on port 40999, as demonstrated by an improperly encrypted password.

5CVSS6AI score0.00225EPSS