Improper Input Validation vulnerability in custom report...
High severity
Unreviewed
Published
Mar 25, 2022
to the GitHub Advisory Database
•
Updated Sep 20, 2024
Description
Published by the National Vulnerability Database
Mar 24, 2022
Published to the GitHub Advisory Database
Mar 25, 2022
Last updated
Sep 20, 2024
Improper Input Validation vulnerability in custom report logo upload in Nozomi Networks Guardian, and CMC allows an authenticated attacker with admin or report manager roles to execute unattended commands on the appliance using web server user privileges. This issue affects: Nozomi Networks Guardian versions prior to 22.0.0. Nozomi Networks CMC versions prior to 22.0.0.
References