Extremexos

CVEs (5)

CVE	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2017-14332	Hig	0.53	8.1	0.01	Oct 23, 2017	Extreme EXOS 15.7, 16.x, 21.x, and 22.x allows remote attackers to hijack sessions by determining SessionID values.
CVE-2017-14331	Med	0.44	6.7	0.00	Oct 23, 2017	Extreme EXOS 16.x, 21.x, and 22.x allows administrators to bypass the "exsh restricted shell" protection mechanism and obtain an interactive shell.
CVE-2017-14330	Med	0.44	6.7	0.00	Oct 23, 2017	Extreme EXOS 16.x, 21.x, and 22.x allows administrators to obtain a root shell via vectors involving a privileged process.
CVE-2017-14329	Med	0.44	6.7	0.00	Oct 23, 2017	Extreme EXOS 16.x, 21.x, and 22.x allows administrators to obtain a root shell via vectors involving an exsh debug shell.
CVE-2017-14327	Med	0.29	4.4	0.00	Oct 23, 2017	Extreme EXOS 16.x, 21.x, and 22.x allows administrators to read arbitrary files.

CVE-2017-14332HigOct 23, 2017
risk 0.53cvss 8.1epss 0.01
Extreme EXOS 15.7, 16.x, 21.x, and 22.x allows remote attackers to hijack sessions by determining SessionID values.
CVE-2017-14331MedOct 23, 2017
risk 0.44cvss 6.7epss 0.00
Extreme EXOS 16.x, 21.x, and 22.x allows administrators to bypass the "exsh restricted shell" protection mechanism and obtain an interactive shell.
CVE-2017-14330MedOct 23, 2017
risk 0.44cvss 6.7epss 0.00
Extreme EXOS 16.x, 21.x, and 22.x allows administrators to obtain a root shell via vectors involving a privileged process.
CVE-2017-14329MedOct 23, 2017
risk 0.44cvss 6.7epss 0.00
Extreme EXOS 16.x, 21.x, and 22.x allows administrators to obtain a root shell via vectors involving an exsh debug shell.
CVE-2017-14327MedOct 23, 2017
risk 0.29cvss 4.4epss 0.00
Extreme EXOS 16.x, 21.x, and 22.x allows administrators to read arbitrary files.