RSS   Vulnerabilities for 'Watchdog console'   RSS

2018-04-20
 
CVE-2018-10079

CWE-275
 

 
Geist WatchDog Console 3.2.2 uses a weak ACL for the C:\ProgramData\WatchDog Console directory, which allows local users to modify configuration data by updating (1) config.xml or (2) servers.xml.

 
 
CVE-2018-10078

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via a server description.

 
 
CVE-2018-10077

CWE-611
 

 
XML external entity (XXE) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to read arbitrary files via crafted XML data.

 


Copyright 2024, cxsecurity.com

 

Back to Top