CVE-2024-36046

Critical CVSS: 9.8

Infoblox NIOS through 8.6.4 executes with more privileges than required.

Vendor

Product

CWE

Yayın Tarihi

2025-02-27 23:15:36

Güncelleme

2025-04-10 20:14:10

Source Identifier

cve@mitre.org

KEV Date Added

CWE-269 Nios CRITICAL Infoblox 2025

https://support.infoblox.com/s/article/000010390

High

CVE-2025-61879

In Infoblox NIOS through 9.0.7, a High-Privileged User Can Trigger an Arbitrary File Write via the Account Creation Mech…

High

CVE-2025-61880

In Infoblox NIOS through 9.0.7, insecure deserialization can result in remote code execution.

High

CVE-2024-52874

In Infoblox NETMRI before 7.6.1, authenticated users can perform SQL injection attacks.

High

CVE-2025-32813

An issue was discovered in Infoblox NETMRI before 7.6.1. Remote Unauthenticated Command Injection can occur.

Critical

CVE-2025-32814

An issue was discovered in Infoblox NETMRI before 7.6.1. Unauthenticated SQL Injection can occur.

Medium

CVE-2025-32815

An issue was discovered in Infoblox NETMRI before 7.6.1. Authentication Bypass via a Hardcoded credential can occur.