Vulnerabilities > Vertiv > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-30 | CVE-2019-9509 | Cross-site Scripting vulnerability in Vertiv Avocent Umg-4000 Firmware 4.2.1.19 The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to reflected XSS in an HTTP POST parameter. | 5.4 |
| 2018-04-20 | CVE-2018-10078 | Cross-site Scripting vulnerability in Vertiv Watchdog Console 3.2.2 Cross-site scripting (XSS) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via a server description. | 4.8 |
| 2018-04-20 | CVE-2018-10077 | XXE vulnerability in Vertiv Watchdog Console 3.2.2 XML external entity (XXE) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to read arbitrary files via crafted XML data. | 4.9 |