Netsweeper@4.0.5 Security Vulnerabilities and Issues — Netsweeper@4.0.5 CVE List

Lucene search

NetsweeperNetsweeper4.0.5

4 matches found

CVE•added 2017/09/19 3:29 p.m.•46 views

CVE-2014-9618

The Client Filter Admin portal in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote attackers to bypass authentication and subsequently create arbitrary profiles via a showdeny action to the default URL.

9.8CVSS9.5AI score0.68171EPSS

CVE•added 2017/09/19 3:29 p.m.•40 views

CVE-2014-9616

Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote attackers to obtain sensitive information by making a request that redirects to the deny page.

7.5CVSS7.3AI score0.003EPSS

CVE•added 2017/09/19 3:29 p.m.•40 views

CVE-2014-9619

Unrestricted file upload vulnerability in webadmin/ajaxfilemanager/ajaxfilemanager.php in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote authenticated users with admin privileges on the Cloud Manager web console to execute arbitrary PHP code by uploading a file w...

7.2CVSS7.3AI score0.06457EPSS

CVE•added 2017/09/19 3:29 p.m.•39 views

CVE-2014-9610

Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote attackers to bypass authentication and remove IP addresses from the quarantine via the ip parameter to webadmin/user/quarantine_disable.php.

5.3CVSS5.8AI score0.13362EPSS