Vertiv: >> Watchdog Console Security Vulnerabilities
XML external entity (XXE) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to read arbitrary files via crafted XML data.
CVSS Score
4.9
EPSS Score
0.118
Published
2018-04-20
Cross-site scripting (XSS) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via a server description.
CVSS Score
4.8
EPSS Score
0.003
Published
2018-04-20
Geist WatchDog Console 3.2.2 uses a weak ACL for the C:\ProgramData\WatchDog Console directory, which allows local users to modify configuration data by updating (1) config.xml or (2) servers.xml.
CVSS Score
7.8
EPSS Score
0.001
Published
2018-04-20