Vulnerabilities > Vertiv > Watchdog Console

DATE CVE VULNERABILITY TITLE RISK
2018-04-20 CVE-2018-10079 Improper Privilege Management vulnerability in Vertiv Watchdog Console 3.2.2
Geist WatchDog Console 3.2.2 uses a weak ACL for the C:\ProgramData\WatchDog Console directory, which allows local users to modify configuration data by updating (1) config.xml or (2) servers.xml.
local
low complexity
vertiv CWE-269
7.8
2018-04-20 CVE-2018-10078 Cross-site Scripting vulnerability in Vertiv Watchdog Console 3.2.2
Cross-site scripting (XSS) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via a server description.
network
low complexity
vertiv CWE-79
4.8
2018-04-20 CVE-2018-10077 XXE vulnerability in Vertiv Watchdog Console 3.2.2
XML external entity (XXE) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to read arbitrary files via crafted XML data.
network
low complexity
vertiv CWE-611
4.9