GCVE - cpe:2.3:a:akkadianlabs:ova_appliance:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:akkadianlabs:ova_appliance:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Akkadianlabs (`6221cb6d-049c-5e2e-be43-fb01f68bb277`)
Product	Ova Appliance (`6ca08e40-2076-52ee-a0b3-10fa0c515cad`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-31581`	vulnerable	2026-06-08 05:31:53.721381	Akkadian Provisioning Manager Engine (PME) Shell Escape via 'vi' editor interface HIGH (7.9) The restricted shell provided by Akkadian Provisioning Manager Engine (PME) can be escaped by abusing the 'Edit MySQL Configuration' command. This command launches a standard vi editor interface which can then be escaped. This issue was resolved in Akkadian OVA appliance version 3.0 (and later), Akkadian Provisioning Manager 5.0.2 (and later), and Akkadian Appliance Manager 3.3.0.314-4a349e0 (and later). Published: 2021-07-22T18:27:19.000Z Updated: 2024-08-03T23:03:33.468Z Open on db.gcve.eu Reference links https://www.rapid7.com/blog/post/2021/06/08/akkadian-provisioning-manager-multiple-vulnerabilities-disclosure/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-31580`	vulnerable	2026-06-08 05:31:53.720939	Akkadian Provisioning Manager Engine (PME) Shell Escape via 'exec' command HIGH (8.7) The restricted shell provided by Akkadian Provisioning Manager Engine (PME) can be bypassed by switching the OpenSSH channel from `shell` to `exec` and providing the ssh client a single execution parameter. This issue was resolved in Akkadian OVA appliance version 3.0 (and later), Akkadian Provisioning Manager 5.0.2 (and later), and Akkadian Appliance Manager 3.3.0.314-4a349e0 (and later). Published: 2021-07-22T18:27:18.000Z Updated: 2024-08-03T23:03:33.574Z Open on db.gcve.eu Reference links https://www.rapid7.com/blog/post/2021/06/08/akkadian-provisioning-manager-multiple-vulnerabilities-disclosure/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-31579`	vulnerable	2026-06-08 05:31:53.718927	Akkadian Provisioning Manager Engine (PME) Hard-Coded Credentials HIGH (8.2) Akkadian Provisioning Manager Engine (PME) ships with a hard-coded credential, akkadianuser:haakkadianpassword. This issue was resolved in Akkadian OVA appliance version 3.0 (and later), Akkadian Provisioning Manager 5.0.2 (and later), and Akkadian Appliance Manager 3.3.0.314-4a349e0 (and later). Published: 2021-07-22T18:27:17.000Z Updated: 2024-08-03T23:03:33.409Z Open on db.gcve.eu Reference links https://www.rapid7.com/blog/post/2021/06/08/akkadian-provisioning-manager-multiple-vulnerabilities-disclosure/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.