» 2016 » 5월

CVE-2016-2350

Posted on 2016년 5월 7일2016년 5월 8일 by admin

CVE-2016-2350

Multiple cross-site scripting (XSS) vulnerabilities on the Accellion File Transfer Appliance (FTA) before FTA_9_12_40 allow remote attackers to inject arbitrary web script or HTML via unspecified input to (1) getimageajax.php, (2) move_partition_frame.html, or (3) wmInfo.html.

Source: CVE-2016-2350

CVE-2015-6552

Posted on 2016년 5월 7일2016년 5월 8일 by admin

CVE-2015-6552

The management-services protocol implementation in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2 and NetBackup Appliance through 2.5.4, 2.6.0.x through 2.6.0.4, 2.6.1.x through 2.6.1.2, and 2.7.x before 2.7.2 allows remote attackers to make arbitrary RPC calls via unspecified vectors.

Source: CVE-2015-6552

CVE-2015-6551

Posted on 2016년 5월 7일2016년 5월 8일 by admin

CVE-2015-6551

Veritas NetBackup 7.x through 7.5.0.7 and 7.6.0.x through 7.6.0.4 and NetBackup Appliance through 2.5.4 and 2.6.0.x through 2.6.0.4 do not use TLS for administration-console traffic to the NBU server, which allows remote attackers to obtain sensitive information by sniffing the network for key-exchange packets.

Source: CVE-2015-6551

CVE-2015-6550

Posted on 2016년 5월 7일2016년 5월 8일 by admin

CVE-2015-6550

bpcd in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2 and NetBackup Appliance through 2.5.4, 2.6.0.x through 2.6.0.4, 2.6.1.x through 2.6.1.2, and 2.7.x before 2.7.2 allows remote attackers to execute arbitrary commands via crafted input.

Source: CVE-2015-6550

CVE-2016-2014 (network_node_manager_i)

Posted on 2016년 5월 7일2016년 5월 11일 by admin

CVE-2016-2014 (network_node_manager_i)

HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to modify data or cause a denial of service via unspecified vectors.

Source: CVE-2016-2014 (network_node_manager_i)

CVE-2016-2014

Posted on 2016년 5월 7일2016년 5월 8일 by admin

CVE-2016-2014

HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to modify data or cause a denial of service via unspecified vectors.

Source: CVE-2016-2014

CVE-2016-2013 (network_node_manager_i)

Posted on 2016년 5월 7일2016년 5월 10일 by admin

CVE-2016-2013 (network_node_manager_i)

HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to obtain sensitive information via unspecified vectors.

Source: CVE-2016-2013 (network_node_manager_i)

CVE-2016-2013

Posted on 2016년 5월 7일2016년 5월 8일 by admin

CVE-2016-2013

HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to obtain sensitive information via unspecified vectors.

Source: CVE-2016-2013