Zevenet Zen Load Balancer vulnerabilities
3 known vulnerabilities affecting zevenet/zen_load_balancer.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2019-7301P3HIGHCVSS 7.2PoCv3.10.12019-02-01
CVE-2019-7301 [HIGH] CWE-78 CVE-2019-7301: Zen Load Balancer 3.10.1 allows remote authenticated admin users to execute arbitrary commands as ro
Zen Load Balancer 3.10.1 allows remote authenticated admin users to execute arbitrary commands as root via shell metacharacters in the index.cgi?action=View_Cert certname parameter.
nvd
CVE-2020-11491P3MEDIUMCVSS 4.9PoCv3.10.12020-04-02
CVE-2020-11491 [MEDIUM] CWE-22 CVE-2020-11491: Monitoring::Logs in Zen Load Balancer 3.10.1 allows remote authenticated admins to conduct absolute
Monitoring::Logs in Zen Load Balancer 3.10.1 allows remote authenticated admins to conduct absolute path traversal attacks, as demonstrated by a filelog=/etc/shadow request to index.cgi.
nvd
CVE-2020-11490P3HIGHCVSS 7.2v3.10.12020-04-02
CVE-2020-11490 [HIGH] CWE-78 CVE-2020-11490: Manage::Certificates in Zen Load Balancer 3.10.1 allows remote authenticated admins to execute arbit
Manage::Certificates in Zen Load Balancer 3.10.1 allows remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the index.cgi cert_issuer, cert_division, cert_organization, cert_locality, cert_state, cert_country, or cert_email parameter.
nvd