Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alcatel-lucent omnivista vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv2
CVE-2010-3281
Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server before R5.1.06.03.c_Patch3 allows remote malicious users to execute arbitrary code or cause a denial of service (service crash) via a long request.
Alcatel-lucent Omnivista 4760 Server 4.1.13.00
Alcatel-lucent Omnivista 4760 Server 5.1
Alcatel-lucent Omnivista 4760 Server 5.0
Alcatel-lucent Omnivista 4760 Server 5.1.06.03.c
Alcatel-lucent Omnivista 4760 Server
3.3
CVSSv2
CVE-2011-0345
Directory traversal vulnerability in the NMS server in Alcatel-Lucent OmniVista 4760 R5.1.06.03 and previous versions allows remote malicious users to read arbitrary files via directory traversal sequences in HTTP GET requests, related to the lang variable.
Alcatel-lucent Omnivista
Alcatel-lucent Omnivista 4760 R5.0.07.05
10
CVSSv2
CVE-2016-9796
Alcatel-Lucent OmniVista 8770 2.0 up to and including 3.0 exposes different ORBs interfaces, which can be queried using the GIOP protocol on TCP port 30024. An attacker can bypass authentication, and OmniVista invokes methods (AddJobSet, AddJob, and ExecuteNow) that can be used t...
Alcatel-lucent Omnivista 8770 Network Management System 3.0
Alcatel-lucent Omnivista 8770 Network Management System 2.0
Alcatel-lucent Omnivista 8770 Network Management System 2.6
1 EDB exploit
4.3
CVSSv2
CVE-2007-5190
Multiple cross-site scripting (XSS) vulnerabilities in Alcatel OmniVista 4760 R4.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the action parameter to php-bin/Webclient.php or (2) the Langue parameter to the default URI.
Alcatel-lucent Omnivista
1 EDB exploit
5
CVSSv2
CVE-2019-20047
An issue exists on Alcatel-Lucent OmniVista 4760 devices, and 8770 devices prior to 4.1.2. An incorrect web server configuration allows a remote unauthenticated malicious user to retrieve the content of its own session files. Every session file contains the administrative LDAP cr...
Al-enterprise Omnivista 4760
Al-enterprise Omnivista 8770
9
CVSSv2
CVE-2019-20048
An issue exists on Alcatel-Lucent OmniVista 8770 devices prior to 4.1.2. An authenticated remote attacker, with elevated privileges in the Web Directory component on port 389, may upload a PHP file to achieve Remote Code Execution as SYSTEM.
Al-enterprise Omnivista 8770
10
CVSSv2
CVE-2019-20049
An issue exists on Alcatel-Lucent OmniVista 4760 devices. A remote unauthenticated attacker can chain a directory traversal (which helps to bypass authentication) with an insecure file upload to achieve Remote Code Execution as SYSTEM. The directory traversal is in the __construc...
Al-enterprise Omnivista 4760
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started