Skip to main content

Vyatta 5400 Vrouter Software

3 CVEs product

Monthly

CVE-2014-4870 HIGH This Week

/opt/vyatta/bin/sudo-users/vyatta-clear-dhcp-lease.pl on the Brocade Vyatta 5400 vRouter 6.4R(x), 6.6R(x), and 6.7R1 does not properly validate parameters, which allows local users to gain privileges. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Vyatta 5400 Vrouter Software Vyatta 5400 Vrouter
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2014-4869 MEDIUM This Month

The Brocade Vyatta 5400 vRouter 6.4R(x), 6.6R(x), and 6.7R1 allows attackers to obtain sensitive encrypted-password information by leveraging membership in the operator group. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Vyatta 5400 Vrouter Software Vyatta 5400 Vrouter
NVD
CVSS 2.0
5.0
EPSS
0.2%
CVE-2014-4868 CRITICAL Act Now

The management console on the Brocade Vyatta 5400 vRouter 6.4R(x), 6.6R(x), and 6.7R1 allows remote authenticated users to execute arbitrary Linux commands via shell metacharacters in a console. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Vyatta 5400 Vrouter Software Vyatta 5400 Vrouter
NVD
CVSS 2.0
9.0
EPSS
0.2%
EPSS 0% CVSS 7.2
HIGH This Week

/opt/vyatta/bin/sudo-users/vyatta-clear-dhcp-lease.pl on the Brocade Vyatta 5400 vRouter 6.4R(x), 6.6R(x), and 6.7R1 does not properly validate parameters, which allows local users to gain privileges. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Vyatta 5400 Vrouter Software Vyatta 5400 Vrouter
NVD
EPSS 0% CVSS 5.0
MEDIUM This Month

The Brocade Vyatta 5400 vRouter 6.4R(x), 6.6R(x), and 6.7R1 allows attackers to obtain sensitive encrypted-password information by leveraging membership in the operator group. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Vyatta 5400 Vrouter Software Vyatta 5400 Vrouter
NVD
EPSS 0% CVSS 9.0
CRITICAL Act Now

The management console on the Brocade Vyatta 5400 vRouter 6.4R(x), 6.6R(x), and 6.7R1 allows remote authenticated users to execute arbitrary Linux commands via shell metacharacters in a console. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Vyatta 5400 Vrouter Software Vyatta 5400 Vrouter
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy