System Networking Switch Center

system_networking_switch_center

Vendor: Ibm • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-7820 2Ibm Lenovo 2Switch Center System Networking Switch Center May 6, 2026 Nov 12, 2015 N/A· v4 N/A· v3 7.1 HIGH· v2 Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and...Show more Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and consequently provide ZipDownload.jsp input containing directory traversal sequences to read arbitrary files, via a request to port 40080 or 40443.Show less
CVE-2015-7819 2Ibm Lenovo 2Switch Center System Networking Switch Center May 6, 2026 Nov 12, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The DB service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain sensitive administrator-account information via a request on port 4099...Show more The DB service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain sensitive administrator-account information via a request on port 40999, as demonstrated by an improperly encrypted password.Show less
CVE-2015-7818 2Ibm Lenovo 2Switch Center System Networking Switch Center May 6, 2026 Nov 12, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 The administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows local users to execute arbitrary JSP code with SYSTEM privileges by using t...Show more The administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows local users to execute arbitrary JSP code with SYSTEM privileges by using the Apache Axis AdminService deployment method to install a .jsp file.Show less
CVE-2015-7817 2Ibm Lenovo 2Switch Center System Networking Switch Center May 6, 2026 Nov 12, 2015 N/A· v4 N/A· v3 7.1 HIGH· v2 Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and...Show more Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and consequently provide FileReader.jsp input containing directory traversal sequences to read arbitrary text files, via a request to port 40080 or 40443.Show less