Vulnerabilities > Versa Networks > Versa Director
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-07 | CVE-2021-39285 | Cross-site Scripting vulnerability in Versa-Networks Versa Director 16.1R2 A XSS vulnerability exists in Versa Director Release: 16.1R2 Build: S8. | 4.3 |
| 2021-05-26 | CVE-2018-16496 | Improper Authentication vulnerability in Versa-Networks Versa Director In Versa Director, the un-authentication request found. | 5.0 |
| 2021-05-26 | CVE-2018-16498 | Cleartext Storage of Sensitive Information vulnerability in Versa-Networks Versa Director In Versa Director, the unencrypted backup files stored on the Versa deployment contain credentials stored within configuration files. | 2.1 |
| 2021-05-26 | CVE-2019-25029 | Command Injection vulnerability in Versa-Networks Versa Director In Versa Director, the command injection is an attack in which the goal is execution of arbitrary commands on the host operating system via a vulnerable application. | 10.0 |
| 2021-05-26 | CVE-2019-25030 | Insufficiently Protected Credentials vulnerability in Versa-Networks products In Versa Director, Versa Analytics and VOS, Passwords are not hashed using an adaptive cryptographic hash function or key derivation function prior to storage. | 2.1 |