Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cohesity vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2021-28124
A man-in-the-middle vulnerability in Cohesity DataPlatform support channel in version 6.3 up to 6.3.1g, 6.4 up to 6.4.1c and 6.5.1 up to and including 6.5.1b. Missing server authentication in impacted versions can allow an malicious user to Man-in-the-middle (MITM) support channe...
Cohesity Cohesity Dataplatform
6.5
CVSSv3
CVE-2023-33295
Cohesity DataProtect before 6.8.1_u5 or 7.1 exists to have a incorrect access control vulnerability due to a lack of TLS Certificate Validation.
Cohesity Cohesity Dataplatform
9.8
CVSSv3
CVE-2021-28123
Undocumented Default Cryptographic Key Vulnerability in Cohesity DataPlatform version 6.3 prior 6.3.1g, 6.4 up to 6.4.1c and 6.5.1 up to and including 6.5.1b. The ssh key can provide an attacker access to the linux system in the affected version.
Cohesity Cohesity Dataplatform
7.8
CVSSv3
CVE-2021-36795
A permission issue in the Cohesity Linux agent may allow privilege escalation in version 6.5.1b to 6.5.1d-hotfix10, 6.6.0a to 6.6.0b-hotfix1. An underprivileged linux user, if certain environment criteria are met, can gain additional privileges.
Cohesity Linux Agent
Cohesity Linux Agent 6.5.1d
Cohesity Linux Agent 6.6.0b
8.1
CVSSv3
CVE-2019-11242
A man-in-the-middle vulnerability related to vCenter access was found in Cohesity DataPlatform version 5.x and 6.x before 6.1.1c. Cohesity clusters did not verify TLS certificates presented by vCenter. This vulnerability could expose Cohesity user credentials configured to access...
Cohesity Dataplatform
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started