Vulnerabilities > Veeam > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-07-27 | CVE-2019-14297 | Cross-site Scripting vulnerability in Veeam ONE Reporter 9.5.0.3201 Veeam ONE Reporter 9.5.0.3201 allows XSS via the Add/Edit Widget with a crafted Caption field to setDashboardWidget in CommonDataHandlerReadOnly.ashx. | 3.5 |
2019-07-27 | CVE-2019-14298 | Cross-site Scripting vulnerability in Veeam ONE Reporter 9.5.0.3201 Veeam ONE Reporter 9.5.0.3201 allows XSS via a crafted Description(config) field to addDashboard or editDashboard in CommonDataHandlerReadOnly.ashx. | 3.5 |
2015-10-16 | CVE-2015-5742 | Information Exposure vulnerability in Veeam Backup and Replication 5.0.2.230/8.0.0.2030 VeeamVixProxy in Veeam Backup & Replication (B&R) before 8.0 update 3 stores local administrator credentials in log files with world-readable permissions, which allows local users to obtain sensitive information by reading the files. | 2.1 |