| Max CVSS | 9.0 | Min CVSS | 6.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-0632 | 9.0 |
Directory traversal vulnerability in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 allows remote authenticated users to execute arbitrary code via unspecified vectors.
|
13-10-2015 - 16:35 | 01-04-2014 - 06:28 | |
| CVE-2014-0635 | 7.5 |
Session fixation vulnerability in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 allows remote attackers to hijack web sessions via unspecified vectors.
|
01-04-2014 - 14:16 | 01-04-2014 - 06:28 | |
| CVE-2014-0634 | 6.0 |
EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 does not include the HTTPOnly flag in a Set-Cookie header for an unspecified cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie
|
01-04-2014 - 14:14 | 01-04-2014 - 06:28 | |
| CVE-2014-0633 | 7.7 |
The GUI in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 does not properly validate session-timeout values, which might make it easier for remote attackers to execute arbitrary code by leveraging an unattended workstation.
|
01-04-2014 - 14:13 | 01-04-2014 - 06:28 |