|
249581
|
5.5 |
MEDIUM
Local
|
veritas
|
netbackup
netbackup_appliance
|
An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. There are world-writable log files, allowing destruction or spoofing of log data.
|
CWE-276
Incorrect Default Permissions
|
CVE-2017-6404
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249582
|
9.8 |
CRITICAL
Network
|
veritas
|
netbackup_appliance
netbackup
|
An issue was discovered in Veritas NetBackup Before 8.0 and NetBackup Appliance Before 3.0. NetBackup Cloud Storage Service uses a hardcoded username and password.
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-6403
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249583
|
6.5 |
MEDIUM
Network
|
veritas
|
netbackup_appliance
netbackup
|
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Denial of service affecting NetBackup server can occur.
|
NVD-CWE-noinfo
|
CVE-2017-6402
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249584
|
7.8 |
HIGH
Local
|
veritas
|
netbackup_appliance
netbackup
|
An issue was discovered in Veritas NetBackup before 8.0 and NetBackup Appliance before 3.0. Local arbitrary command execution can occur when using bpcd and bpnbat.
|
CWE-269
Improper Privilege Management
|
CVE-2017-6401
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249585
|
8.8 |
HIGH
Local
|
veritas
|
netbackup_appliance
netbackup
access
|
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged command execution on NetBackup Server and Client can occur (on the local system).
|
NVD-CWE-noinfo
|
CVE-2017-6400
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249586
|
8.8 |
HIGH
Local
|
veritas
|
netbackup_appliance
netbackup
access
|
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command execution on NetBackup Server and Client (on the server or a connected client…
|
NVD-CWE-noinfo
|
CVE-2017-6399
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249587
|
6.1 |
MEDIUM
Network
|
flightairmap
|
flightairmap
|
An issue was discovered in FlightAirMap v1.0-beta.10. The vulnerability exists due to insufficient filtration of user-supplied data in multiple parameters passed to several *-sub-menu.php pages. An a…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6397
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249588
|
6.1 |
MEDIUM
Network
|
webpagetest_project
|
webpagetest
|
An issue was discovered in WPO-Foundation WebPageTest 3.0. The vulnerability exists due to insufficient filtration of user-supplied data passed to the "webpagetest-master/www/compare-cf.php" URL. An …
|
CWE-79
Cross-site Scripting
|
CVE-2017-6396
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249589
|
6.1 |
MEDIUM
Network
|
hashover_project
|
hashover
|
An issue was discovered in HashOver 2.0. The vulnerability exists due to insufficient filtration of user-supplied data passed to the 'hashover/scripts/widget-output.php' URL. An attacker could execut…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6395
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249590
|
6.1 |
MEDIUM
Network
|
open-emr
|
openemr
|
Multiple Cross-Site Scripting (XSS) issues were discovered in OpenEMR 5.0.0 and 5.0.1-dev. The vulnerabilities exist due to insufficient filtration of user-supplied data passed to the "openemr-master…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6394
|
2024-11-21 12:29 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
