Netsas Enigma Network Management Solution — known CVE vulnerabilities
Every CVE whose affected-product data names Netsas Enigma Network Management Solution, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2019-16072 — CVSS 9.8 (critical): An OS command injection vulnerability in the discover_and_manage CGI script in NETSAS Enigma NMS 65.0.0 and prior allows an attacker to…
CVE-2019-16064 — CVSS 9.6 (critical): NETSAS Enigma NMS 65.0.0 and prior suffers from a directory traversal vulnerability that can allow an authenticated user to access files…
CVE-2019-16066 — CVSS 8.8 (high): An unrestricted file upload vulnerability exists in user and system file upload functions in NETSAS Enigma NMS 65.0.0 and prior. This…
CVE-2019-16065 — CVSS 8.8 (high): A remote SQL injection web vulnerability was discovered in the Enigma NMS 65.0.0 and prior web application that allows an attacker to…
CVE-2019-16061 — CVSS 8.8 (high): A number of files on the NETSAS Enigma NMS server 65.0.0 and prior are granted weak world-readable and world-writable permissions, allowing…
CVE-2019-16068 — CVSS 8.8 (high): A CSRF vulnerability exists in NETSAS ENIGMA NMS version 65.0.0 and prior that could allow an attacker to be able to trick a victim into…
CVE-2019-16067 — CVSS 7.5 (high): NETSAS Enigma NMS 65.0.0 and prior utilises basic authentication over HTTP for enforcing access control to the web application. The use of…
CVE-2019-16063 — CVSS 7.5 (high): NETSAS Enigma NMS 65.0.0 and prior does not encrypt sensitive data rendered within web pages. It is possible for an attacker to expose…
CVE-2019-16062 — CVSS 6.5 (medium): NETSAS Enigma NMS 65.0.0 and prior does not encrypt sensitive data stored within the SQL database. It is possible for an attacker to expose…
CVE-2019-16069 — CVSS 6.1 (medium): A number of stored Cross-site Scripting (XSS) vulnerabilities were identified in NETSAS Enigma NMS 65.0.0 and prior that could allow a…
CVE-2019-16070 — CVSS 6.1 (medium): A number of stored Cross-site Scripting (XSS) vulnerabilities were identified in NETSAS Enigma NMS 65.0.0 and prior that could allow a…