RSS   Vulnerabilities for 'Expedition'   RSS

2019-03-26
 
CVE-2019-1571

CWE-79
 

 
The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the RADIUS server settings.

 
 
CVE-2019-1570

CWE-79
 

 
The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the LDAP server settings.

 
 
CVE-2019-1569

CWE-79
 

 
The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings for account name of admin user.

 
2018-12-11
 
CVE-2018-10143

CWE-284
 

 
The Palo Alto Networks Expedition Migration tool 1.0.107 and earlier may allow an unauthenticated attacker with remote access to run system level commands on the device hosting this service/application.

 
2018-11-27
 
CVE-2018-10142

CWE-200
 

 
The Expedition Migration tool 1.0.106 and earlier may allow an unauthenticated attacker to enumerate files on the operating system.

 

 >>> Vendor: Paloaltonetworks 9 Products
Globalprotect
Netconnect
Pan-os
Expedition
Expedition migration tool
Demisto
Traps
Minemeld
Twistlock


Copyright 2019, cxsecurity.com

 

Back to Top