Vulnerabilities > Vertiv > Low

DATE CVE VULNERABILITY TITLE RISK
2020-03-30 CVE-2019-9508 Cross-site Scripting vulnerability in Vertiv Avocent Umg-4000 Firmware 4.2.1.19
The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to stored XSS.
network
vertiv CWE-79
3.5
3.5
2020-03-30 CVE-2019-9509 Cross-site Scripting vulnerability in Vertiv Avocent Umg-4000 Firmware 4.2.1.19
The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to reflected XSS in an HTTP POST parameter.
network
vertiv CWE-79
3.5
3.5
2018-04-20 CVE-2018-10078 Cross-site Scripting vulnerability in Vertiv Watchdog Console 3.2.2
Cross-site scripting (XSS) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via a server description.
network
vertiv CWE-79
3.5
3.5
2018-04-20 CVE-2018-10079 Improper Privilege Management vulnerability in Vertiv Watchdog Console 3.2.2
Geist WatchDog Console 3.2.2 uses a weak ACL for the C:\ProgramData\WatchDog Console directory, which allows local users to modify configuration data by updating (1) config.xml or (2) servers.xml.
local
low complexity
vertiv CWE-269
2.1
2.1