Loadbalancer Enterprise Va Max vulnerabilities
3 known vulnerabilities affecting loadbalancer/enterprise_va_max.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2
Vulnerabilities
Page 1 of 1
CVE-2020-13378P2HIGHCVSS 8.8≤ 8.3.82023-05-12
CVE-2020-13378 [HIGH] CWE-78 CVE-2020-13378: Loadbalancer.org Enterprise VA MAX through 8.3.8 has an OS Command Injection vulnerability that allo
Loadbalancer.org Enterprise VA MAX through 8.3.8 has an OS Command Injection vulnerability that allows a remote authenticated attacker to execute arbitrary code.
nvd
CVE-2020-13377P3HIGHCVSS 8.1≤ 8.3.82023-05-12
CVE-2020-13377 [HIGH] CWE-22 CVE-2020-13377: The web-services interface of Loadbalancer.org Enterprise VA MAX through 8.3.8 could allow an authen
The web-services interface of Loadbalancer.org Enterprise VA MAX through 8.3.8 could allow an authenticated, remote, low-privileged attacker to conduct directory traversal attacks and obtain read and write access to sensitive files.
nvd
CVE-2018-18864P3CRITICALCVSS 9.6fixed in 8.3.32018-11-20
CVE-2018-18864 [CRITICAL] CWE-79 CVE-2018-18864: Loadbalancer.org Enterprise VA MAX before 8.3.3 has XSS because Apache HTTP Server logs are displaye
Loadbalancer.org Enterprise VA MAX before 8.3.3 has XSS because Apache HTTP Server logs are displayed.
nvd