CVEs (3)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Akkadianlabs 2Ova Appliance Provisioning ManagerNov 21, 2024 Jul 22, 2021 N/A· v4 4.4 MEDIUM· v3 2.1 LOW· v2 The restricted shell provided by Akkadian Provisioning Manager Engine (PME) can be escaped by abusing the 'Edit MySQL Configuration' command. This command launches a standard vi editor interface which can then be escaped...Show more |
1Akkadianlabs 2Ova Appliance Provisioning ManagerNov 21, 2024 Jul 22, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 The restricted shell provided by Akkadian Provisioning Manager Engine (PME) can be bypassed by switching the OpenSSH channel from `shell` to `exec` and providing the ssh client a single execution parameter. This issue wa...Show more |
1Akkadianlabs 2Ova Appliance Provisioning ManagerNov 21, 2024 Jul 22, 2021 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 Akkadian Provisioning Manager Engine (PME) ships with a hard-coded credential, akkadianuser:haakkadianpassword. This issue was resolved in Akkadian OVA appliance version 3.0 (and later), Akkadian Provisioning Manager 5.0...Show more |