Vulnerabilities > Infoblox > Nios > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-01-09 CVE-2022-28975 Cross-site Scripting vulnerability in Infoblox Nios 8.5.2409296
A stored cross-site scripting (XSS) vulnerability in Infoblox NIOS v8.5.2-409296 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the VLAN View Name field.
network
low complexity
infoblox CWE-79
5.4
2021-06-28 CVE-2020-15303 XML Entity Expansion vulnerability in Infoblox Nios
Infoblox NIOS before 8.5.2 allows entity expansion during an XML upload operation, a related issue to CVE-2003-1564.
network
low complexity
infoblox CWE-776
4.0