Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Castlerock Subscribe
Total 8 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-6027 1 Castlerock 1 Snmpc 2021-09-13 4.3 MEDIUM 6.1 MEDIUM
Castle Rock Computing SNMPc before 2015-12-17 has XSS via SNMP.
CVE-2015-6028 1 Castlerock 1 Snmpc 2021-09-13 6.5 MEDIUM 8.8 HIGH
Castle Rock Computing SNMPc before 2015-12-17 has SQL injection via the sc parameter.
CVE-2020-11554 1 Castlerock 1 Snmpc Online 2021-07-21 5.0 MEDIUM 7.5 HIGH
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive information via info.php4.
CVE-2020-11557 1 Castlerock 1 Snmpc Online 2021-07-21 5.0 MEDIUM 7.5 HIGH
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It includes the username and password values in cleartext within each request's cookie value.
CVE-2019-13494 1 Castlerock 1 Simple Network Management Protocol Console 2020-08-24 6.8 MEDIUM 7.8 HIGH
nodeimp.exe in Castle Rock SNMPc before 9.0.12.1 and 10.x before 10.0.9 has a stack-based buffer overflow via a long variable string in a Map Objects text file.
CVE-2020-11555 1 Castlerock 1 Snmpc Online 2020-04-10 5.0 MEDIUM 7.5 HIGH
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive credential information from backup files.
CVE-2020-11553 1 Castlerock 1 Snmpc Online 2020-04-10 6.8 MEDIUM 8.8 HIGH
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There is pervasive CSRF.
CVE-2020-11556 1 Castlerock 1 Snmpc Online 2020-04-10 3.5 LOW 5.4 MEDIUM
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There are multiple persistent (stored) and reflected XSS vulnerabilities.