Lucene search
OsnexusQuantastor
6 matches found
CVE-2021-42080
An attacker is able to launch a Reflected XSS attack using a crafted URL.
7.4CVSS6.4AI score0.00108EPSS
CVE-2021-4406
An administrator is able to execute commands as root via the alerts management dialog
9.1CVSS7.7AI score0.00051EPSS
CVE-2021-42082
Local users are able to execute scripts under root privileges.
7.8CVSS7.8AI score0.00033EPSS
CVE-2021-42081
An authenticated administrator is allowed to remotely execute arbitrary shell commands via the API.
9.1CVSS7.8AI score0.00089EPSS
CVE-2021-42079
An authenticated administrator is able to prepare an alert that is able to execute an SSRF attack. This is exclusively with POST requests.
6.2CVSS5.5AI score0.00052EPSS
CVE-2021-42083
An authenticated attacker is able to create alerts that trigger a stored XSS attack.
8.7CVSS5.6AI score0.00089EPSS