Vulnerabilities > Nozominetworks > Guardian > 19.0.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-03-24 | CVE-2022-0551 | Improper Input Validation vulnerability in Nozominetworks CMC and Guardian Improper Input Validation vulnerability in project file upload in Nozomi Networks Guardian and CMC allows an authenticated attacker with admin or import manager roles to execute unattended commands on the appliance using web server user privileges. | 6.5 |
2021-02-22 | CVE-2021-26725 | Path Traversal vulnerability in Nozominetworks Central Management Control and Guardian Path Traversal vulnerability when changing timezone using web GUI of Nozomi Networks Guardian, CMC allows an authenticated administrator to read-protected system files. | 4.0 |
2021-02-22 | CVE-2021-26724 | OS Command Injection vulnerability in Nozominetworks Central Management Control and Guardian OS Command Injection vulnerability when changing date settings or hostname using web GUI of Nozomi Networks Guardian and CMC allows authenticated administrators to perform remote code execution. | 9.0 |