In VOS compromised, an attacker at network endpoints can possibly view communications between an unsuspecting user and the service using man-in-the-middle attacks. Usage of unapproved SSH encryption protocols or cipher suites also violates the Data Protection TSR (Technical Security Requirements).
oryginał ENCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NVersa Networks Versa Operating System
OSVersa-Networkswszystkie wersje
Powiązane podatności
In VOS and overly permissive "umask" may allow for authorized users of the server to gain unauthorized access ...
In VOS user session identifier (authentication token) is issued to the browser prior to authentication but is ...
In Versa Director, Versa Analytics and VOS, Passwords are not hashed using an adaptive cryptographic hash func...
Versa Concerto SD-WAN: Authentication Bypass w konfiguracji Traefik reverse proxy
In Versa Director, the command injection is an attack in which the goal is execution of arbitrary commands on ...