Vulnerabilities > Vertiv > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-03-30 CVE-2019-9509 Cross-site Scripting vulnerability in Vertiv Avocent Umg-4000 Firmware 4.2.1.19
The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to reflected XSS in an HTTP POST parameter.
network
low complexity
vertiv CWE-79
5.4
2018-04-20 CVE-2018-10078 Cross-site Scripting vulnerability in Vertiv Watchdog Console 3.2.2
Cross-site scripting (XSS) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via a server description.
network
low complexity
vertiv CWE-79
4.8
2018-04-20 CVE-2018-10077 XXE vulnerability in Vertiv Watchdog Console 3.2.2
XML external entity (XXE) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to read arbitrary files via crafted XML data.
network
low complexity
vertiv CWE-611
4.9