Security Advisory

CVE-2022-0550

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-24 14:15:20

Last updated 2024-09-20 10:26:05

Assigner Nozomi

State PUBLISHED

Description

Improper Input Validation vulnerability in custom report logo upload in Nozomi Networks Guardian, and CMC allows an authenticated attacker with admin or report manager roles to execute unattended commands on the appliance using web server user privileges. This issue affects: Nozomi Networks Guardian versions prior to 22.0.0. Nozomi Networks CMC versions prior to 22.0.0.

← Browse all CVEs View on cve.org ↗