Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eucalyptus eucalyptus vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2013-4767
Unspecified vulnerability in Eucalyptus prior to 3.3.2 has unknown impact and attack vectors.
Eucalyptus Eucalyptus 3.3.0
Eucalyptus Eucalyptus
7.5
CVSSv2
CVE-2012-3240
The Walrus service in Eucalyptus 2.0.3 and 3.0.x prior to 3.0.2 allows remote malicious users to gain administrator privileges via a crafted REST request.
Eucalyptus Eucalyptus 3.0.1
Eucalyptus Eucalyptus 2.0.3
7.5
CVSSv2
CVE-2012-3241
The VMware Broker in Eucalyptus 2.0.3 and 3.0.x prior to 3.0.2 does not properly authenticate SOAP requests, which allows remote malicious users to execute arbitrary VMware Broker API commands.
Eucalyptus Eucalyptus 2.0.3
Eucalyptus Eucalyptus 3.0.1
7.5
CVSSv2
CVE-2010-3905
The password reset feature in the administrator interface for Eucalyptus 2.0.0 and 2.0.1 does not perform authentication, which allows remote malicious users to gain privileges by sending password reset requests for other users.
Eucalyptus Eucalyptus 2.0.0
Eucalyptus Eucalyptus 2.0.1
6.9
CVSSv2
CVE-2013-2297
Eucalyptus EuStore sets a blank root password in the default configuration of EMI 3868652036, EMI 0400376721, EMI 2425352071, and EMI 1347115203, which allows local users to gain privileges via unspecified vectors, a related issue to CVE-2013-2069.
Eucalyptus Eustore Emi 3868652036
Eucalyptus Eustore Emi 0400376721
Eucalyptus Eustore Emi 2425352071
Eucalyptus Eustore Emi 1347115203
6.8
CVSSv2
CVE-2014-5039
Cross-site scripting (XSS) vulnerability in Eucalyptus Management Console (EMC) 4.0.x prior to 4.0.2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Eucalyptus Eucalyptus Management Console
6.5
CVSSv2
CVE-2016-8520
HPE Helion Eucalyptus v4.3.0 and previous versions does not correctly check IAM user's permissions for accessing versioned objects and ACLs. In some cases, authenticated users with S3 permissions could also access versioned data.
Eucalyptus Eucalyptus
6.5
CVSSv2
CVE-2016-8528
A Remote Escalation of Privilege vulnerability in HPE Helion Eucalyptus version 3.3.0 up to and including 4.3.1 was found.
Eucalyptus Eucalyptus
6.5
CVSSv2
CVE-2012-4064
Eucalyptus prior to 3.1.1 does not properly restrict the binding of external SOAP web-services messages, which allows remote authenticated users to gain privileges by sending a message to (1) Cloud Controller or (2) Walrus with the internal message format and a modified user id.
Eucalyptus Eucalyptus 1.1
Eucalyptus Eucalyptus 2.0.1
Eucalyptus Eucalyptus 2.0.0
Eucalyptus Eucalyptus 1.6.2
Eucalyptus Eucalyptus 1.4
Eucalyptus Eucalyptus 1.5.1
Eucalyptus Eucalyptus 3.0
Eucalyptus Eucalyptus 2.0
Eucalyptus Eucalyptus 1.6
Eucalyptus Eucalyptus
Eucalyptus Eucalyptus 1.2
Eucalyptus Eucalyptus 1.3
Eucalyptus Eucalyptus 3.0.1
Eucalyptus Eucalyptus 3.1.1
Eucalyptus Eucalyptus 2.0.3
Eucalyptus Eucalyptus 1.0
Eucalyptus Eucalyptus 1.5.2
Eucalyptus Eucalyptus 2.0.2
6.5
CVSSv2
CVE-2011-0730
Eucalyptus prior to 2.0.3 and Eucalyptus EE prior to 2.0.2, as used in Ubuntu Enterprise Cloud (UEC) and other products, do not properly interpret signed elements in SOAP requests, which allows man-in-the-middle malicious users to execute arbitrary commands by modifying a request...
Eucalyptus Eucalyptus
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 11.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »