CVE-2024-36047
- EPSS 0.17%
- Published 27.02.2025 23:15:37
- Last modified 10.04.2025 16:46:54
Infoblox NIOS through 8.6.4 and 9.x through 9.0.3 has Improper Input Validation.
CVE-2024-37566
- EPSS 0.1%
- Published 27.02.2025 23:15:37
- Last modified 10.04.2025 16:45:21
Infoblox NIOS through 8.6.4 has Improper Authentication for Grids.
CVE-2024-37567
- EPSS 0.07%
- Published 27.02.2025 23:15:37
- Last modified 10.04.2025 16:45:23
Infoblox NIOS through 8.6.4 has Improper Access Control for Grids.
CVE-2024-36046
- EPSS 0.11%
- Published 27.02.2025 23:15:36
- Last modified 10.04.2025 20:14:10
Infoblox NIOS through 8.6.4 executes with more privileges than required.
CVE-2022-28975
- EPSS 0.18%
- Published 09.01.2024 14:15:45
- Last modified 18.06.2025 17:15:26
A stored cross-site scripting (XSS) vulnerability in Infoblox NIOS v8.5.2-409296 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the VLAN View Name field.
CVE-2023-37249
- EPSS 0.1%
- Published 25.08.2023 20:15:08
- Last modified 21.11.2024 08:11:18
Infoblox NIOS through 8.5.1 has a faulty component that accepts malicious input without sanitization, resulting in shell access.
CVE-2020-15303
- EPSS 0.39%
- Published 28.06.2021 13:15:12
- Last modified 21.11.2024 05:05:16
Infoblox NIOS before 8.5.2 allows entity expansion during an XML upload operation, a related issue to CVE-2003-1564.
CVE-2018-10239
- EPSS 0.12%
- Published 17.06.2019 15:15:12
- Last modified 21.11.2024 03:41:05
A privilege escalation vulnerability in the "support access" feature on Infoblox NIOS 6.8 through 8.4.1 could allow a locally authenticated administrator to temporarily gain additional privileges on an affected device and perform actions within the s...