Loadbalancer: >> Enterprise Va Max Security Vulnerabilities
The web-services interface of Loadbalancer.org Enterprise VA MAX through 8.3.8 could allow an authenticated, remote, low-privileged attacker to conduct directory traversal attacks and obtain read and write access to sensitive files.
CVSS Score
8.1
EPSS Score
0.002
Published
2023-05-12
Loadbalancer.org Enterprise VA MAX through 8.3.8 has an OS Command Injection vulnerability that allows a remote authenticated attacker to execute arbitrary code.
CVSS Score
8.8
EPSS Score
0.021
Published
2023-05-12
Loadbalancer.org Enterprise VA MAX before 8.3.3 has XSS because Apache HTTP Server logs are displayed.
CVSS Score
9.6
EPSS Score
0.009
Published
2018-11-20