← Back

Gigamon

gigamon

5 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Gigavue Os
gigavue-os
3 CVEs
Gigavue
gigavue
2 CVEs

CVEs (5)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-0746
1Gigamon
1Gigavue Os
Nov 21, 2024
Mar 10, 2023
N/A· v4
6.1 MEDIUM· v3
N/A· v2
The help page in GigaVUE-FM, when using GigaVUE-OS software version 5.0 202, does not require an authenticated user. An attacker could enforce a user into inserting malicious JavaScript code into the URI, that could lead...Show more
The help page in GigaVUE-FM, when using GigaVUE-OS software version 5.0 202, does not require an authenticated user. An attacker could enforce a user into inserting malicious JavaScript code into the URI, that could lead to a Reflected Cross site Scripting.Show less
CVE-2020-23250
1Gigamon
1Gigavue Os
Jun 17, 2026
Jan 5, 2021
N/A· v4
2.3 LOW· v3
2.1 LOW· v2
GigaVUE-OS (GVOS) 5.4 - 5.9 uses a weak algorithm for a hash stored in internal database.
CVE-2020-23249
1Gigamon
1Gigavue Os
Jun 17, 2026
Jan 5, 2021
N/A· v4
4.7 MEDIUM· v3
4.0 MEDIUM· v2
GigaVUE-OS (GVOS) 5.4 - 5.9 stores a Redis database password in plaintext.
CVE-2020-12252
1Gigamon
1Gigavue
Jun 17, 2026
Apr 29, 2020
N/A· v4
6.2 MEDIUM· v3
6.0 MEDIUM· v2
An issue was discovered in Gigamon GigaVUE 5.5.01.11. The upload functionality allows an arbitrary file upload for an authenticated user. If an executable file is uploaded into the www-root directory, then it could yield...Show more
An issue was discovered in Gigamon GigaVUE 5.5.01.11. The upload functionality allows an arbitrary file upload for an authenticated user. If an executable file is uploaded into the www-root directory, then it could yield remote code execution via the filename parameter.Show less
CVE-2020-12251
1Gigamon
1Gigavue
Jun 17, 2026
Apr 29, 2020
N/A· v4
2.2 LOW· v3
3.5 LOW· v2
An issue was discovered in Gigamon GigaVUE 5.5.01.11. The upload functionality allows an authenticated user to change the filename value (in the POST method) from the original filename to achieve directory traversal via...Show more
An issue was discovered in Gigamon GigaVUE 5.5.01.11. The upload functionality allows an authenticated user to change the filename value (in the POST method) from the original filename to achieve directory traversal via a ../ sequence and, for example, obtain a complete directory listing of the machine.Show less