nozomi networks Summary
Latest vulnerabilities published by nozomi networks
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Privilege Escalation Vulnerability in Local Service Accounts by Vendor
CVE-2024-13090Nozomi NetworksGuardian7.3HIGHOS Command Injection Vulnerability in Nozomi Networks Guardian and CMC
CVE-2024-13089Nozomi NetworksGuardian7.5HIGHAccess Control Vulnerability Affects Reporting Configuration in Guardian/CMC
CVE-2024-4465Nozomi NetworksGuardian5MEDIUMArc Vulnerable to Path Traversal Attacks via 'Zip Slip'
CVE-2023-5938Nozomi NetworksArc8HIGHWindows Configuration Files Vulnerable to Information Disclosure
CVE-2023-5937Nozomi NetworksArc3.8LOWArc Temporary File Vulnerability Allows Root Privilege Execution
CVE-2023-5936Nozomi NetworksArc7.8HIGHLocal Web Interface Vulnerability in Arc Could Lead to Sensitive Information Extraction and Arbitrary Code Execution
CVE-2023-5935Nozomi NetworksArc7.4HIGHUnauthenticated Denial of Service Vulnerability in Nozomi Networks Guardian
CVE-2024-0218Nozomi NetworksGuardian7.5HIGHSensitive Information at Risk of Unauthorized Access in OpenAPI Audit Records
CVE-2023-6916Nozomi NetworksGuardian7.2HIGHCheck Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0
CVE-2023-5253Nozomi NetworksGuardian6.3MEDIUMAuthenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0
CVE-2023-2567Nozomi NetworksGuardian8.7HIGHSQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0
CVE-2023-29245Nozomi NetworksGuardian9.2CRITICALDoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0
CVE-2023-32649Nozomi NetworksGuardian8.2HIGHDoS via SAML configuration in Guardian/CMC before 22.6.2
CVE-2023-23903Nozomi NetworksGuardian4.9MEDIUMPartial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2
CVE-2023-24015Nozomi NetworksGuardian4.3MEDIUMAuthenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2
CVE-2023-22378Nozomi NetworksGuardian6.5MEDIUMStored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2
CVE-2023-22843Nozomi NetworksGuardian4.8MEDIUMAuthenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2
CVE-2023-23574Nozomi NetworksGuardian8.8HIGHInformation disclosure via the debug function in assertions in Guardian/CMC before 22.6.2
CVE-2023-24471Nozomi NetworksGuardian6.5MEDIUMSession Fixation in Guardian/CMC before 22.6.2
CVE-2023-24477Nozomi NetworksGuardian7HIGHAuthenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2
CVE-2022-4259Nozomi NetworksCmc8.8HIGHAuthenticated RCE on project configuration import in Guardian/CMC before 22.0.0
CVE-2022-0551Nozomi NetworksGuardian7.2HIGHAuthenticated RCE on logo report upload in Guardian/CMC before 22.0.0
CVE-2022-0550Nozomi NetworksGuardian7.2HIGHAuthenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4
CVE-2021-26724Nozomi NetworksGuardian7.2HIGHAuthenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4
CVE-2021-26725Nozomi NetworksGuardian7.2HIGH