Vulnerabilities > Versa Networks > Versa Director

DATE CVE VULNERABILITY TITLE RISK
2024-08-22 CVE-2024-39717 Unrestricted Upload of File with Dangerous Type vulnerability in Versa-Networks Versa Director
The Versa Director GUI provides an option to customize the look and feel of the user interface.
network
low complexity
versa-networks CWE-434
7.2
2021-09-07 CVE-2021-39285 Cross-site Scripting vulnerability in Versa-Networks Versa Director 16.1R2
A XSS vulnerability exists in Versa Director Release: 16.1R2 Build: S8.
network
low complexity
versa-networks CWE-79
6.1
2021-05-26 CVE-2018-16496 Improper Authentication vulnerability in Versa-Networks Versa Director
In Versa Director, the un-authentication request found.
network
low complexity
versa-networks CWE-287
5.3
2021-05-26 CVE-2018-16498 Cleartext Storage of Sensitive Information vulnerability in Versa-Networks Versa Director
In Versa Director, the unencrypted backup files stored on the Versa deployment contain credentials stored within configuration files.
local
low complexity
versa-networks CWE-312
5.5
2021-05-26 CVE-2019-25029 Command Injection vulnerability in Versa-Networks Versa Director
In Versa Director, the command injection is an attack in which the goal is execution of arbitrary commands on the host operating system via a vulnerable application.
network
low complexity
versa-networks CWE-77
critical
9.8
2021-05-26 CVE-2019-25030 Insufficiently Protected Credentials vulnerability in Versa-Networks products
In Versa Director, Versa Analytics and VOS, Passwords are not hashed using an adaptive cryptographic hash function or key derivation function prior to storage.
local
low complexity
versa-networks CWE-522
5.5