Omnivista 8770
Approved changes feed: RSS · Atom
cpe:2.3:a:al-enterprise:omnivista_8770:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Al Enterprise (10c49c56-b3a1-56a7-9a3b-2666db7c1ead) |
|---|---|
| Product | Omnivista 8770 (9a5ecf44-dc92-5dcb-89d5-c2401dae4b5d) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-20048 |
vulnerable | 2026-06-08 05:13:30.438661 |
Details available
An issue was discovered on Alcatel-Lucent OmniVista 8770 devices before 4.1.2. An authenticated remote attacker, with elevated privileges in the Web Directory component on port 389, may upload a PHP file to achieve Remote Code Execution as SYSTEM.
Published: 2019-12-27T18:19:04.000Z
Updated: 2024-08-05T02:32:10.523Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-20047 |
vulnerable | 2026-06-08 05:13:30.438215 |
Details available
An issue was discovered on Alcatel-Lucent OmniVista 4760 devices, and 8770 devices before 4.1.2. An incorrect web server configuration allows a remote unauthenticated attacker to retrieve the content of its own session files. Every session file contains the administrative LDAP credentials encoded in a reversible format. Sessions are stored in /sessions/sess_<sessionid>.
Published: 2019-12-27T18:19:20.000Z
Updated: 2024-08-05T02:32:10.547Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.