Vulnerabilities > Infoblox > High

DATE CVE VULNERABILITY TITLE RISK
2023-08-25 CVE-2023-37249 Unspecified vulnerability in Infoblox Nios
Infoblox NIOS through 8.5.1 has a faulty component that accepts malicious input without sanitization, resulting in shell access.
network
low complexity
infoblox
8.8
2023-02-17 CVE-2022-32972 Uncontrolled Search Path Element vulnerability in Infoblox Bloxone Endpoint
Infoblox BloxOne Endpoint for Windows through 2.2.7 allows DLL injection that can result in local privilege escalation.
local
low complexity
infoblox CWE-427
7.8
2019-06-17 CVE-2018-10239 Permissions, Privileges, and Access Controls vulnerability in Infoblox Nios
A privilege escalation vulnerability in the "support access" feature on Infoblox NIOS 6.8 through 8.4.1 could allow a locally authenticated administrator to temporarily gain additional privileges on an affected device and perform actions within the super user scope.
local
low complexity
infoblox CWE-264
7.2
2014-07-15 CVE-2014-3419 Credentials Management vulnerability in Infoblox Netmri
Infoblox NetMRI before 6.8.5 has a default password of admin for the "root" MySQL database account, which makes it easier for local users to obtain access via unspecified vectors.
local
low complexity
infoblox CWE-255
7.2