Virtualization Manager Security Vulnerabilities and Issues — Virtualization Manager CVE List

Lucene search

SolarwindsVirtualization Manager

3 matches found

CVE•added 2016/06/17 3:59 p.m.•965 views

CVE-2016-3643

SolarWinds Virtualization Manager 6.3.1 and earlier allow local users to gain privileges by leveraging a misconfiguration of sudo, as demonstrated by "sudo cat /etc/passwd."

7.8CVSS7.6AI score0.06995EPSS

CVE•added 2016/06/17 3:59 p.m.•100 views

CVE-2016-3642

The RMI service in SolarWinds Virtualization Manager 6.3.1 and earlier allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.

10CVSS9.3AI score0.23539EPSS

CVE•added 2016/06/24 5:59 p.m.•39 views

CVE-2016-5709

SolarWinds Virtualization Manager 6.3.1 and earlier uses weak encryption to store passwords in /etc/shadow, which allows local users with superuser privileges to obtain user passwords via a brute force attack.

4.7CVSS4.5AI score0.00104EPSS