Vulnerabilities > Versa Networks > Versa Director
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-22 | CVE-2024-39717 | Unrestricted Upload of File with Dangerous Type vulnerability in Versa-Networks Versa Director The Versa Director GUI provides an option to customize the look and feel of the user interface. | 7.2 |
| 2021-09-07 | CVE-2021-39285 | Cross-site Scripting vulnerability in Versa-Networks Versa Director 16.1R2 A XSS vulnerability exists in Versa Director Release: 16.1R2 Build: S8. | 6.1 |
| 2021-05-26 | CVE-2018-16496 | Improper Authentication vulnerability in Versa-Networks Versa Director In Versa Director, the un-authentication request found. | 5.3 |
| 2021-05-26 | CVE-2018-16498 | Cleartext Storage of Sensitive Information vulnerability in Versa-Networks Versa Director In Versa Director, the unencrypted backup files stored on the Versa deployment contain credentials stored within configuration files. | 5.5 |
| 2021-05-26 | CVE-2019-25029 | Command Injection vulnerability in Versa-Networks Versa Director In Versa Director, the command injection is an attack in which the goal is execution of arbitrary commands on the host operating system via a vulnerable application. | 9.8 |
| 2021-05-26 | CVE-2019-25030 | Insufficiently Protected Credentials vulnerability in Versa-Networks products In Versa Director, Versa Analytics and VOS, Passwords are not hashed using an adaptive cryptographic hash function or key derivation function prior to storage. | 5.5 |