Marvell Qconvergeconsole Gui
Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:marvell_qconvergeconsole_gui:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Marvell Qconvergeconsole Gui (2e58659c-638b-5c6f-a39b-116fb643c1d8) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-5805 |
vulnerable | 2026-06-08 05:26:43.775734 |
Details available
In Marvell QConvergeConsole GUI <= 5.5.0.74, credentials are stored in cleartext in tomcat-users.xml. OS-level users on the QCC host who are not authorized to use QCC may use the plaintext credentials to login to QCC.
Published: 2021-01-08T15:13:11.000Z
Updated: 2024-08-04T08:39:25.930Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-5804 |
vulnerable | 2026-06-08 05:26:43.774554 |
Details available
Marvell QConvergeConsole GUI <= 5.5.0.74 is affected by a path traversal vulnerability. The deleteEventLogFile method of the GWTTestServiceImpl class lacks proper validation of a user-supplied path prior to using it in file deletion operations. An authenticated, remote attacker can leverage this vulnerability to delete arbitrary remote files as SYSTEM or root.
Published: 2021-01-08T15:12:54.000Z
Updated: 2024-08-04T08:39:25.999Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-5803 |
vulnerable | 2026-06-08 05:26:43.773317 |
Details available
Relative Path Traversal in Marvell QConvergeConsole GUI 5.5.0.74 allows a remote, authenticated attacker to delete arbitrary files on disk as SYSTEM or root.
Published: 2020-12-18T20:52:50.000Z
Updated: 2024-08-04T08:39:25.916Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.