In Infoblox NETMRI before 7.6.1, authenticated users can perform SQL injection attacks.
CVSS Score
8.8
EPSS Score
0.0
Published
2025-05-22
An issue was discovered in Infoblox NETMRI before 7.6.1. Remote Unauthenticated Command Injection can occur.
CVSS Score
7.2
EPSS Score
0.001
Published
2025-05-22
An issue was discovered in Infoblox NETMRI before 7.6.1. Unauthenticated SQL Injection can occur.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-05-22
An issue was discovered in Infoblox NETMRI before 7.6.1. Authentication Bypass via a Hardcoded credential can occur.
CVSS Score
6.5
EPSS Score
0.001
Published
2025-05-22
Infoblox NETMRI before 7.6.1 has a vulnerability allowing remote authenticated users to read arbitrary files with root access.
CVSS Score
5.3
EPSS Score
0.0
Published
2025-05-22
CRLF injection vulnerability in Infoblox Network Automation NetMRI before 7.1.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the contentType parameter in a login action to config/userAdmin/login.tdf.
CVSS Score
6.1
EPSS Score
0.004
Published
2017-01-23
config/userAdmin/login.tdf in Infoblox NetMRI before 6.8.5 allows remote attackers to execute arbitrary commands via shell metacharacters in the skipjackUsername parameter.
CVSS Score
10.0
EPSS Score
0.338
Published
2014-07-15
Infoblox NetMRI before 6.8.5 has a default password of admin for the "root" MySQL database account, which makes it easier for local users to obtain access via unspecified vectors.
CVSS Score
7.2
EPSS Score
0.001
Published
2014-07-15