Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eucalyptus eucalyptus vulnerabilities and exploits
(subscribe to this query)
9.6
CVSSv3
CVE-2014-5039
Cross-site scripting (XSS) vulnerability in Eucalyptus Management Console (EMC) 4.0.x prior to 4.0.2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Eucalyptus Eucalyptus Management Console
8.8
CVSSv3
CVE-2016-8520
HPE Helion Eucalyptus v4.3.0 and previous versions does not correctly check IAM user's permissions for accessing versioned objects and ACLs. In some cases, authenticated users with S3 permissions could also access versioned data.
Eucalyptus Eucalyptus
8.8
CVSSv3
CVE-2016-8528
A Remote Escalation of Privilege vulnerability in HPE Helion Eucalyptus version 3.3.0 up to and including 4.3.1 was found.
Eucalyptus Eucalyptus
7.5
CVSSv3
CVE-2015-6861
HPE Helion Eucalyptus 3.4.0 up to and including 4.2.0 allows remote authenticated users to bypass an intended AssumeRole permission requirement and assume an IAM role by leveraging a policy setting for a user's account.
Eucalyptus Eucalyptus 4.0.1
Eucalyptus Eucalyptus 3.4.0
Eucalyptus Eucalyptus 3.4.1
Eucalyptus Eucalyptus 3.4.2
Eucalyptus Eucalyptus 4.1.2
Eucalyptus Eucalyptus 4.1.1
Eucalyptus Eucalyptus 3.4.3
Eucalyptus Eucalyptus 4.1.0
Eucalyptus Eucalyptus 4.0.0
Eucalyptus Eucalyptus 4.2.0
Eucalyptus Eucalyptus 4.0.2
6.8
CVSSv3
CVE-2014-5040
HP Helion Eucalyptus 4.1.x prior to 4.1.2 and HPE Helion Eucalyptus 4.2.x prior to 4.2.1 allow remote authenticated users to bypass intended access restrictions and modify arbitrary (1) access key credentials by leveraging knowledge of a key ID or (2) signing certificates by leve...
Eucalyptus Eucalyptus 4.1.1
Eucalyptus Eucalyptus 4.2.0
6.5
CVSSv3
CVE-2017-7999
Atlassian Eucalyptus prior to 4.4.1, when in EDGE mode, allows remote authenticated users with certain privileges to cause a denial of service (E2 service outage) via unspecified vectors.
Eucalyptus Eucalyptus 4.4.0
Eucalyptus Eucalyptus 4.3.0
Eucalyptus Eucalyptus 4.2.1
Eucalyptus Eucalyptus 4.3.1
Eucalyptus Eucalyptus 4.2.2
Eucalyptus Eucalyptus 4.2.0
6.1
CVSSv3
CVE-2013-4770
Cross-site scripting (XSS) vulnerability in Eucalyptus Management Console (EMC) 4.0.x prior to 4.0.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Eucalyptus Eucalyptus Management Console
NA
CVE-2013-4769
The cloud controller (aka CLC) component in Eucalyptus 3.3.x and 3.4.x prior to 3.4.2, when the dns.recursive.enabled setting is used, allows remote malicious users to cause a denial of service (traffic amplification) via spoofed DNS queries.
Eucalyptus Eucalyptus 3.3.1
Eucalyptus Eucalyptus 3.3.2
Eucalyptus Eucalyptus 3.3.0
Eucalyptus Eucalyptus 3.4.0
Eucalyptus Eucalyptus 3.4.1
NA
CVE-2014-5037
Eucalyptus 4.0.0 up to and including 4.0.1, when the log level is set to INFO, logs user and system passwords, which allows local users to obtain sensitive information by reading cloud-requests.log.
Eucalyptus Eucalyptus 4.0.1
Eucalyptus Eucalyptus 4.0.0
NA
CVE-2014-5038
Eucalyptus 3.0.0 up to and including 4.0.1, when the log level is set to DEBUG or lower, logs user and system passwords, which allows local users to obtain sensitive information by reading the cloud log files.
Eucalyptus Eucalyptus 4.0.1
Eucalyptus Eucalyptus 3.3.1
Eucalyptus Eucalyptus 3.2.2
Eucalyptus Eucalyptus 3.3.2
Eucalyptus Eucalyptus 3.3.0
Eucalyptus Eucalyptus 3.0.1
Eucalyptus Eucalyptus 3.4.0
Eucalyptus Eucalyptus 3.4.1
Eucalyptus Eucalyptus 3.4.2
Eucalyptus Eucalyptus 3.1.0
Eucalyptus Eucalyptus 3.1.1
Eucalyptus Eucalyptus 3.1.2
Eucalyptus Eucalyptus 3.0
Eucalyptus Eucalyptus 3.2.1
Eucalyptus Eucalyptus 3.2.0
Eucalyptus Eucalyptus 3.4.3
Eucalyptus Eucalyptus 4.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »