Versa Director@- Security Vulnerabilities and Issues — Versa Director@- CVE List

Lucene search

Versa-networksVersa Director-

4 matches found

CVE•added 2021/05/26 7:15 p.m.•45 views

CVE-2019-25029

In Versa Director, the command injection is an attack in which the goal is execution of arbitrary commands on the host operating system via a vulnerable application. Command injection attacks are possible when an application passes unsafe user supplied data (forms, cookies, HTTP headers etc.) to a ...

10CVSS9.8AI score0.02411EPSS

CVE•added 2021/05/26 7:15 p.m.•43 views

CVE-2019-25030

In Versa Director, Versa Analytics and VOS, Passwords are not hashed using an adaptive cryptographic hash function or key derivation function prior to storage. Popular hashing algorithms based on the Merkle-Damgardconstruction (such as MD5 and SHA-1) alone are insufficient in thwarting password cra...

5.5CVSS5.5AI score0.00047EPSS

CVE•added 2021/05/26 7:15 p.m.•34 views

CVE-2018-16496

In Versa Director, the un-authentication request found.

5.3CVSS5.3AI score0.0019EPSS

CVE•added 2021/05/26 7:15 p.m.•28 views

CVE-2018-16498

In Versa Director, the unencrypted backup files stored on the Versa deployment contain credentials stored within configuration files. These credentials are for various application components such as SNMP, and SSL and Trust keystores.

5.5CVSS5.5AI score0.00027EPSS