Vulnerabilities > Vertiv > Watchdog Console > 3.2.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-20 | CVE-2018-10079 | Improper Privilege Management vulnerability in Vertiv Watchdog Console 3.2.2 Geist WatchDog Console 3.2.2 uses a weak ACL for the C:\ProgramData\WatchDog Console directory, which allows local users to modify configuration data by updating (1) config.xml or (2) servers.xml. | 2.1 |
| 2018-04-20 | CVE-2018-10078 | Cross-site Scripting vulnerability in Vertiv Watchdog Console 3.2.2 Cross-site scripting (XSS) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via a server description. | 3.5 |
| 2018-04-20 | CVE-2018-10077 | XXE vulnerability in Vertiv Watchdog Console 3.2.2 XML external entity (XXE) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to read arbitrary files via crafted XML data. | 4.0 |