Security Vulnerabilities - CVEs Published In August 2021
The vRealize Operations Manager API (8.x prior to 8.5) contains a Server Side Request Forgery in an end point. An unauthenticated malicious actor with network access to the vRealize Operations Manager API can perform a Server Side Request Forgery attack leading to information disclosure.
CVSS Score
7.5
EPSS Score
0.003
Published
2021-08-30
The mechanism which performs certificate validation was discovered to have a flaw that resulted in certificates signed by an internal certificate authority to not be properly validated. This issue only affects clients that are configured to utilize Tenable.sc as the vulnerability data source.
CVSS Score
7.5
EPSS Score
0.001
Published
2021-08-30
PuppetDB logging included potentially sensitive system information.
CVSS Score
4.3
EPSS Score
0.002
Published
2021-08-30
Puppet Enterprise presented a security risk by not sanitizing user input when doing a CSV export.
CVSS Score
8.8
EPSS Score
0.008
Published
2021-08-30
A vulnerability in versions 10.1 through 10.5 of Johnson Controls CEM Systems AC2000 allows a remote attacker to access to the system without adequate authorization. This issue affects: Johnson Controls CEM Systems AC2000 10.1; 10.2; 10.3; 10.4; 10.5.
CVSS Score
8.2
EPSS Score
0.006
Published
2021-08-30
In FreeBSD 13.0-STABLE before n246941-20f96f215562, 12.2-STABLE before r370400, 11.4-STABLE before r370399, 13.0-RELEASE before p4, 12.2-RELEASE before p10, and 11.4-RELEASE before p13, certain VirtIO-based device models in bhyve failed to handle errors when fetching I/O descriptors. A malicious guest may cause the device model to operate on uninitialized I/O vectors leading to memory corruption, crashing of the bhyve process, and possibly arbitrary code execution in the bhyve process.
CVSS Score
7.8
EPSS Score
0.0
Published
2021-08-30
A configuration issue in Indexhibit 2.1.5 allows authenticated attackers to modify .php files, leading to getshell.
CVSS Score
8.8
EPSS Score
0.004
Published
2021-08-30
A cross-site request forgery (CSRF) vulnerability in Indexhibit 2.1.5 allows attackers to arbitrarily delete admin accounts.
CVSS Score
6.5
EPSS Score
0.001
Published
2021-08-30
A cross-site request forgery (CSRF) vulnerability in Indexhibit 2.1.5 allows attackers to arbitrarily reset account passwords.
CVSS Score
5.7
EPSS Score
0.001
Published
2021-08-30
A reflected cross-site scripting (XSS) vulnerability in the /plugin/ajax.php component of Indexhibit 2.1.5 allows attackers to execute arbitrary web scripts or HTML.
CVSS Score
6.1
EPSS Score
0.002
Published
2021-08-30