Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infoblox netmri vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-3418
config/userAdmin/login.tdf in Infoblox NetMRI prior to 6.8.5 allows remote malicious users to execute arbitrary commands via shell metacharacters in the skipjackUsername parameter.
Infoblox Netmri 6.8.2.11
Infoblox Netmri 6.1.2
Infoblox Netmri 6.2.1
Infoblox Netmri 6.0.2.42
Infoblox Netmri
Infoblox Netmri 6.2.1.48
1 EDB exploit
1 Github repository
NA
CVE-2014-3419
Infoblox NetMRI prior to 6.8.5 has a default password of admin for the "root" MySQL database account, which makes it easier for local users to obtain access via unspecified vectors.
Infoblox Netmri 6.8.2.11
Infoblox Netmri 6.1.2
Infoblox Netmri 6.2.1
Infoblox Netmri 6.0.2.42
Infoblox Netmri
Infoblox Netmri 6.2.1.48
NA
CVE-2011-5178
Multiple cross-site scripting (XSS) vulnerabilities in netmri/config/userAdmin/login.tdf in Infoblox NetMRI 6.0.2.42, 6.1.2, 6.2.1 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) eulaAccepted or (2) mode parameter.
Infoblox Netmri 6.1.2
Infoblox Netmri 6.0.2.42
Infoblox Netmri
Infoblox Netmri 6.2.1.48
NA
CVE-2015-2033
Anyterm Daemon in Infoblox Network Automation NetMRI before NETMRI-23483 allows remote malicious users to execute arbitrary commands with root privileges via a crafted terminal/anyterm-module request.
Infoblox Netmri
6.1
CVSSv3
CVE-2016-6484
CRLF injection vulnerability in Infoblox Network Automation NetMRI prior to 7.1.1 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the contentType parameter in a login action to config/userAdmin/login.tdf.
Infoblox Netmri
6.1
CVSSv3
CVE-2018-6643
Infoblox NetMRI 7.1.1 has Reflected Cross-Site Scripting via the /api/docs/index.php query parameter.
Infoblox Netmri 7.1.1
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started