Vulnerabilities > Netgain Systems

DATE CVE VULNERABILITY TITLE RISK
2018-11-01 CVE-2018-10587 OS Command Injection vulnerability in Netgain-Systems Enterprise Manager
NetGain Enterprise Manager (EM) is affected by OS Command Injection vulnerabilities in versions before 10.0.57.
network
low complexity
netgain-systems CWE-78
7.2
2018-11-01 CVE-2018-10586 Cross-site Scripting vulnerability in Netgain-Systems Enterprise Manager 10.0.57
NetGain Enterprise Manager (EM) is affected by multiple Stored Cross-Site Scripting (XSS) vulnerabilities in versions before 10.1.12.
network
low complexity
netgain-systems CWE-79
4.8
2018-01-23 CVE-2017-17407 Use of Externally-Controlled Format String vulnerability in Netgain-Systems Enterprise Manager 7.2.699
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of NetGain Systems Enterprise Manager v7.2.699 build 1001.
network
low complexity
netgain-systems CWE-134
critical
9.8
2018-01-23 CVE-2017-17406 Deserialization of Untrusted Data vulnerability in Netgain-Systems Enterprise Manager 7.2.699/7.2.730
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager.
network
low complexity
netgain-systems CWE-502
critical
9.8
2018-01-23 CVE-2017-16610 Exposure of Resource to Wrong Sphere vulnerability in Netgain-Systems Enterprise Manager 7.2.699/7.2.730
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager.
network
low complexity
netgain-systems CWE-668
critical
9.8
2018-01-23 CVE-2017-16609 Information Exposure vulnerability in Netgain-Systems Enterprise Manager 7.2.699/7.2.730
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Netgain Enterprise Manager.
network
low complexity
netgain-systems CWE-200
7.5
2018-01-23 CVE-2017-16608 Use of Externally-Controlled Format String vulnerability in Netgain-Systems Enterprise Manager 7.2.699/7.2.730
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager.
network
low complexity
netgain-systems CWE-134
critical
9.8
2018-01-23 CVE-2017-16607 Information Exposure vulnerability in Netgain-Systems Enterprise Manager 7.2.699/7.2.730
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Netgain Enterprise Manager.
network
low complexity
netgain-systems CWE-200
7.5
2018-01-23 CVE-2017-16606 Exposure of Resource to Wrong Sphere vulnerability in Netgain-Systems Enterprise Manager 7.2.730
This vulnerability allows remote attackers to execute code by creating arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034.
network
low complexity
netgain-systems CWE-668
8.8
2018-01-23 CVE-2017-16605 Exposure of Resource to Wrong Sphere vulnerability in Netgain-Systems Enterprise Manager 7.2.730
This vulnerability allows remote attackers to overwrite arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034.
network
low complexity
netgain-systems CWE-668
6.5