Vulnerabilities > Aternity

DATE	CVE	VULNERABILITY TITLE	RISK
2023-01-26	CVE-2022-43997	Unspecified vulnerability in Aternity 9.0 Incorrect access control in Aternity agent in Riverbed Aternity before 12.1.4.27 allows for local privilege escalation. local low complexity aternity	7.8
2016-09-29	CVE-2016-5062	Incorrect Resource Transfer Between Spheres vulnerability in Aternity 9.0 The web server in Aternity before 9.0.1 does not require authentication for getMBeansFromURL loading of Java MBeans, which allows remote attackers to execute arbitrary Java code by registering MBeans. network low complexity aternity CWE-669 critical	9.8
2016-09-29	CVE-2016-5061	Cross-site Scripting vulnerability in Aternity 9.0 Multiple cross-site scripting (XSS) vulnerabilities in the web server in Aternity before 9.0.1 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTPAgent, (2) MacAgent, (3) getExternalURL, or (4) retrieveTrustedUrl page. network low complexity aternity CWE-79	6.1

Vulnerabilities > Aternity {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Aternity"}]}