CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0CVE-2011-1422
https://notcve.org/view.php?id=CVE-2011-1422
Cross-site scripting (XSS) vulnerability in an unspecified Shockwave Flash file in EMC RSA Adaptive Authentication On-Premise (AAOP) 2.x, 5.7.x, and 6.x allows remote attackers to inject arbitrary web script or HTML via unknown vectors. Vulnerabilidad de ejecución de comando en sitios cruzados (XSS) en un archivo Shockwave Flash no especificado en EMC RSA Adaptive Authentication On-Premise (AAOP) v2.x, v5.7.x, y v6.x permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores desconocidos. • http://secunia.com/advisories/44236 http://securityreason.com/securityalert/8215 http://securitytracker.com/id?1025382 http://www.securityfocus.com/archive/1/517534/100/0/threaded http://www.securityfocus.com/bid/47408 http://www.vupen.com/english/advisories/2011/1026 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.9EPSS: 0%CPEs: 29EXPL: 0CVE-2011-1421
https://notcve.org/view.php?id=CVE-2011-1421
EMC NetWorker 7.5.x before 7.5.4.3 and 7.6.x before 7.6.1.5, when the client push feature is enabled, uses weak permissions for an unspecified file, which allows local users to gain privileges via unknown vectors. EMC NetWorker v7.5.x anterior a v7.5.4.3 y v7.6.x anterior a v7.6.1.5, cuando la función Client Push cliente está habilitada, utiliza permisos débiles para un archivo no especificado, lo que permite a usuarios locales conseguir privilegios a través de vectores desconocidos. • http://secunia.com/advisories/44237 http://securityreason.com/securityalert/8214 http://securitytracker.com/id?1025383 http://www.securityfocus.com/archive/1/517532/100/0/threaded http://www.securityfocus.com/bid/47410 http://www.vupen.com/english/advisories/2011/1025 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2011-1420
https://notcve.org/view.php?id=CVE-2011-1420
EMC Data Protection Advisor Collector 5.7 and 5.7.1 on Solaris SPARC platforms uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors. EMC Data Protection Advisor Collector v5.7 y v5.7.1 en plataformas Solaris SPARC utiliza permisos débiles para archivos no específicos,lo que permite a usuarios locales conseguir privilegios a través de vectores desconocidos. • http://secunia.com/advisories/43893 http://securityreason.com/securityalert/8169 http://securitytracker.com/id?1025253 http://www.securityfocus.com/archive/1/517179/100/0/threaded http://www.securityfocus.com/bid/47036 http://www.vupen.com/english/advisories/2011/0783 https://exchange.xforce.ibmcloud.com/vulnerabilities/66323 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 3.5EPSS: 0%CPEs: 3EXPL: 0CVE-2011-0442
https://notcve.org/view.php?id=CVE-2011-0442
The service utility in EMC Avamar 5.x before 5.0.4 uses cleartext to transmit event details in (1) service requests and (2) e-mail messages, which might allow remote attackers to obtain sensitive information by sniffing the network. La utilidad de servicio en EMC Avamar v5.x anterior a v5.0.4 utiliza texto claro para transmitir los detalles del evento en una (1) petición de servicio y (2) mensajes de correo electrónico, lo que podría permitir a atacantes remotos obtener información sensible espiando la red . • http://secunia.com/advisories/43797 http://securityreason.com/securityalert/8139 http://www.securityfocus.com/archive/1/517022/100/0/threaded http://www.securityfocus.com/bid/46879 http://www.securitytracker.com/id?1025213 http://www.vupen.com/english/advisories/2011/0677 http://www.vupen.com/english/advisories/2011/0678 https://exchange.xforce.ibmcloud.com/vulnerabilities/66109 • CWE-310: Cryptographic Issues •
CVSS: 8.5EPSS: 0%CPEs: 3EXPL: 0CVE-2011-0648
https://notcve.org/view.php?id=CVE-2011-0648
Unspecified vulnerability in EMC Avamar before 5.0.4-30 allows remote authenticated users to gain privileges via unknown vectors. Vulnerabilidad no especificada en EMC Avamar anterior a v5.0.4-30 permite a usuarios remotos autenticados obtener privilegios a través de vectores desconocidos . • http://osvdb.org/71181 http://secunia.com/advisories/43749 http://securityreason.com/securityalert/8138 http://www.securityfocus.com/archive/1/517024/100/0/threaded http://www.securityfocus.com/bid/46874 https://exchange.xforce.ibmcloud.com/vulnerabilities/66108 •