Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
riverbed vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2017-5670
Riverbed RiOS up to and including 9.6.0 deletes the secure vault with the rm program (not shred or srm), which makes it easier for physically proximate malicious users to obtain sensitive information by reading raw disk blocks.
Riverbed Rios
7.2
CVSSv2
CVE-2017-7307
Riverbed RiOS prior to 9.0.1 does not properly restrict shell access in single-user mode, which makes it easier for physically proximate malicious users to obtain root privileges and access decrypted data by replacing the /opt/tms/bin/cli file.
Riverbed Rios
2.1
CVSSv2
CVE-2017-7305
Riverbed RiOS up to and including 9.6.0 does not require a bootloader password, which makes it easier for physically proximate malicious users to defeat the secure-vault protection mechanism via a crafted boot. NOTE: the vendor believes that this does not meet the definition of a...
Riverbed Rios
7.2
CVSSv2
CVE-2020-15593
SteelCentral Aternity Agent 11.0.0.120 on Windows mishandles IPC. It uses an executable running as a high privileged Windows service to perform administrative tasks and collect data from other processes. It distributes functionality among different processes and uses IPC (Inter-P...
Riverbed Steelcentral Aternity Agent 11.0.0.120
4.3
CVSSv2
CVE-2014-5348
Cross-site scripting (XSS) vulnerability in apps/zxtm/locallog.cgi in Riverbed Stingray (aka SteelApp) Traffic Manager Virtual Appliance 9.6 patchlevel 9620140312 allows remote malicious users to inject arbitrary web script or HTML via the logfile parameter.
Riverbed Steelapp Traffic Manager 9.6
6.8
CVSSv2
CVE-2017-7693
Directory traversal vulnerability in viewer_script.jsp in Riverbed OPNET App Response Xpert (ARX) version 9.6.1 allows remote authenticated users to inject arbitrary commands to read OS files.
Riverbed Opnet App Response Xpert 9.6.1
NA
CVE-2022-43997
Incorrect access control in Aternity agent in Riverbed Aternity prior to 12.1.4.27 allows for local privilege escalation. There is an insufficiently protected handle to the A180AG.exe SYSTEM process with PROCESS_ALL_ACCESS rights.
Aternity Aternity
2.1
CVSSv2
CVE-2019-3800
CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. A local authenticated malicious user with access to the CF CLI config file can act as that client, who is t...
Pivotal Cloud Foundry Deployment Concourse Tasks
Pivotal Cloud Foundry Deployment
Pivotal Cloud Foundry Smoke Test
Pivotal Cloud Foundry Routing Release
Pivotal Cloud Foundry Notifications
Pivotal Cloud Foundry Command Line Interface Release
Pivotal Cloud Foundry Log Cache Release
Pivotal Cloud Foundry Networking Release
Pivotal Cloud Foundry Command Line Interface
Pivotal Cloud Foundry Healthwatch
Pivotal Credhub Service Broker For Pcf
Pivotal Metric Registrar Release
Pivotal On Demand Service Broker
Pivotal Application Service
Pivotal Cloud Foundry Autoscaling Release
Pivotal Pivotal Cloud Foundry Service Broker
Pivotal Single Sign-on
Pivotal Cloud Foundry Event Alerts
Appdynamics Platform Montioring
Bluemedora Nozzle
Contrastsecurity Service Broker
Cyberark Conjur Service Broker
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2