Bluecat Networks Adonis vulnerabilities
2 known vulnerabilities affecting bluecat_networks/adonis.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2007-4226P3HIGHCVSS 7.1PoCv5.0.2.82007-08-08
CVE-2007-4226 [HIGH] CVE-2007-4226: Directory traversal vulnerability in the BlueCat Networks Proteus IPAM appliance 2.0.2.0 (Adonis DNS
Directory traversal vulnerability in the BlueCat Networks Proteus IPAM appliance 2.0.2.0 (Adonis DNS/DHCP appliance 5.0.2.8) allows remote authenticated administrators, with certain TFTP privileges, to create and overwrite arbitrary files via a .. (dot dot) in a pathname. NOTE: this can be leveraged for administrative access by overwriting /etc/shadow.
nvd
CVE-2007-4390P4HIGHCVSS 7.2PoCv5.0.2.82007-08-17
CVE-2007-4390 [HIGH] CWE-264 CVE-2007-4390: The Command Line Interface (CLI), aka Adonis Administration Console, on the BlueCat Networks Adonis
The Command Line Interface (CLI), aka Adonis Administration Console, on the BlueCat Networks Adonis DNS/DHCP appliance 5.0.2.8 allows local admin users to gain root privileges on the underlying operating system via shell metacharacters in a command.
nvd