Vulnerabilities > Vmware > Vrealize LOG Insight > 2.0.5

DATE CVE VULNERABILITY TITLE RISK
2016-08-31 CVE-2016-5332 Path Traversal vulnerability in VMWare Vrealize LOG Insight
Directory traversal vulnerability in VMware vRealize Log Insight 2.x and 3.x before 3.6.0 allows remote attackers to read arbitrary files via unspecified vectors.
network
low complexity
vmware CWE-22
5.3
5.3
2016-07-03 CVE-2016-2082 Cross-Site Request Forgery (CSRF) vulnerability in VMWare Vrealize LOG Insight
Cross-site request forgery (CSRF) vulnerability in VMware vRealize Log Insight 2.x and 3.x before 3.3.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
network
low complexity
vmware CWE-352
8.8
8.8
2016-07-03 CVE-2016-2081 Cross-site Scripting vulnerability in VMWare Vrealize LOG Insight
Cross-site scripting (XSS) vulnerability in VMware vRealize Log Insight 2.x and 3.x before 3.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
low complexity
vmware CWE-79
6.1
6.1