Vulnerabilities > Zenoss > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-21 | CVE-2019-14257 | Permissions, Privileges, and Access Controls vulnerability in Zenoss 2.5.3 pyraw in Zenoss 2.5.3 allows local privilege escalation by modifying environment variables to redirect execution before privileges are dropped, aka ZEN-31765. | 7.2 |
| 2014-12-15 | CVE-2014-9249 | Permissions, Privileges, and Access Controls vulnerability in Zenoss Core The default configuration of Zenoss Core before 5 allows remote attackers to read or modify database information by connecting to unspecified open ports, aka ZEN-15408. | 7.5 |
| 2014-12-15 | CVE-2014-6256 | Permissions, Privileges, and Access Controls vulnerability in Zenoss Core Zenoss Core through 5 Beta 3 allows remote attackers to bypass intended access restrictions and place files in a directory with public (1) read or (2) execute access via a move action, aka ZEN-15386. | 7.5 |