VYPR

Switch Center

by Lenovo

CVEs (4)

  • CVE-2015-7820Nov 12, 2015
    risk 0.00cvss epss 0.01

    Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and consequently provide ZipDownload.jsp input containing…

  • CVE-2015-7819Nov 12, 2015
    risk 0.00cvss epss 0.01

    The DB service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain sensitive administrator-account information via a request on port 40999, as demonstrated by an improperly encrypted password.

  • CVE-2015-7818Nov 12, 2015
    risk 0.00cvss epss 0.00

    The administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows local users to execute arbitrary JSP code with SYSTEM privileges by using the Apache Axis AdminService deployment method to install a…

  • CVE-2015-7817Nov 12, 2015
    risk 0.00cvss epss 0.01

    Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and consequently provide FileReader.jsp input containing…