Vulnerabilities > Riverbed > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-03-10 | CVE-2021-42855 | Incorrect Permission Assignment for Critical Resource vulnerability in Riverbed Steelcentral Appinternals Dynamic Sampling Agent 10.0.0/11.0.0/12.0.0 It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent (DSA) uses the ".debug_command.config" file to store a json string that contains a list of IDs and pre-configured commands. | 7.8 |
2020-07-27 | CVE-2020-15593 | Unspecified vulnerability in Riverbed Steelcentral Aternity Agent 11.0.0.120 SteelCentral Aternity Agent 11.0.0.120 on Windows mishandles IPC. | 7.8 |
2020-07-27 | CVE-2020-15592 | Path Traversal vulnerability in Riverbed Steelcentral Aternity Agent SteelCentral Aternity Agent before 11.0.0.120 on Windows allows Privilege Escalation via a crafted file. | 7.5 |
2019-08-05 | CVE-2019-3800 | Information Exposure vulnerability in multiple products CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. | 7.8 |