Vulnerabilities > Extremenetworks > Extremexos
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-10-23 | CVE-2017-14332 | Unspecified vulnerability in Extremenetworks Extremexos Extreme EXOS 15.7, 16.x, 21.x, and 22.x allows remote attackers to hijack sessions by determining SessionID values. | 8.1 |
| 2017-10-23 | CVE-2017-14331 | Unspecified vulnerability in Extremenetworks Extremexos Extreme EXOS 16.x, 21.x, and 22.x allows administrators to bypass the "exsh restricted shell" protection mechanism and obtain an interactive shell. | 6.7 |
| 2017-10-23 | CVE-2017-14330 | Improper Privilege Management vulnerability in Extremenetworks Extremexos Extreme EXOS 16.x, 21.x, and 22.x allows administrators to obtain a root shell via vectors involving a privileged process. | 6.7 |
| 2017-10-23 | CVE-2017-14329 | Improper Privilege Management vulnerability in Extremenetworks Extremexos Extreme EXOS 16.x, 21.x, and 22.x allows administrators to obtain a root shell via vectors involving an exsh debug shell. | 6.7 |
| 2017-10-23 | CVE-2017-14328 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Extremenetworks Extremexos Extreme EXOS 15.7, 16.x, 21.x, and 22.x allows remote attackers to trigger a buffer overflow leading to a reboot. | 7.5 |
| 2017-10-23 | CVE-2017-14327 | Information Exposure vulnerability in Extremenetworks Extremexos Extreme EXOS 16.x, 21.x, and 22.x allows administrators to read arbitrary files. | 4.4 |