Vulnerabilities > Zenoss > Zenoss Core > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-12-15 | CVE-2014-9249 | Permissions, Privileges, and Access Controls vulnerability in Zenoss Core The default configuration of Zenoss Core before 5 allows remote attackers to read or modify database information by connecting to unspecified open ports, aka ZEN-15408. | 7.5 |
| 2014-12-15 | CVE-2014-6256 | Permissions, Privileges, and Access Controls vulnerability in Zenoss Core Zenoss Core through 5 Beta 3 allows remote attackers to bypass intended access restrictions and place files in a directory with public (1) read or (2) execute access via a move action, aka ZEN-15386. | 7.5 |