Skip to main content
CVE-2016-8204 CRITICAL Emergency

A Directory Traversal vulnerability in FileReceiveServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to upload a malicious file in a. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 71.3% and no vendor patch available.

Path Traversal Brocade Network Advisor
NVD VulDB
CVSS 3.1
9.8
EPSS
71.3%
Threat
4.1
CVE-2016-8205 CRITICAL Act Now

A Directory Traversal vulnerability in DashboardFileReceiveServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to upload a malicious. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 24.1% and no vendor patch available.

Path Traversal Network Advisor
NVD VulDB
CVSS 3.0
9.8
EPSS
24.1%
CVE-2017-5473 HIGH POC PATCH This Week

Cross-site request forgery (CSRF) vulnerability in ntopng through 2.4 allows remote attackers to hijack the authentication of arbitrary users, as demonstrated by admin/add_user.lua,. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

CSRF Ntopng
NVD GitHub Exploit-DB VulDB
CVSS 3.0
8.8
EPSS
0.3%
CVE-2016-8206 HIGH Act Now

A Directory Traversal vulnerability in servlet SoftwareImageUpload in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to write to arbitrary. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 10.4% and no vendor patch available.

Path Traversal Network Advisor
NVD VulDB
CVSS 3.0
7.5
EPSS
10.4%
CVE-2017-5476 HIGH This Week

Serendipity through 2.0.5 allows CSRF for the installation of an event plugin or a sidebar plugin. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Serendipity
NVD GitHub VulDB
CVSS 3.0
8.8
EPSS
0.2%
CVE-2017-5475 HIGH This Week

comment.php in Serendipity through 2.0.5 allows CSRF in deleting any comments. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF PHP Serendipity
NVD GitHub VulDB
CVSS 3.0
8.8
EPSS
0.2%
CVE-2016-10142 HIGH This Week

An issue was discovered in the IPv6 protocol specification, related to ICMP Packet Too Big (PTB) messages. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ipv6
NVD VulDB
CVSS 3.0
8.6
EPSS
1.1%
CVE-2016-8207 HIGH This Week

A Directory Traversal vulnerability in CliMonitorReportServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to read arbitrary files. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Network Advisor
NVD VulDB
CVSS 3.0
7.5
EPSS
5.1%
CVE-2016-8201 HIGH This Week

A CSRF vulnerability in Brocade Virtual Traffic Manager versions released prior to and including 11.0 could allow an attacker to trick a logged-in user into making administrative changes on the. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

CSRF Virtual Traffic Manager
NVD VulDB
CVSS 3.0
8.0
EPSS
0.1%
CVE-2017-5474 MEDIUM PATCH This Month

Open redirect vulnerability in comment.php in Serendipity through 2.0.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the HTTP Referer. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Open Redirect PHP Serendipity
NVD GitHub VulDB
CVSS 3.0
6.1
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy