Known Vulnerabilities for Kiteworks Appliance by Accellion
Listed below are 3 of the newest known vulnerabilities associated with "Kiteworks Appliance" by "Accellion".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2016-5664 json | Directory traversal vulnerability on Accellion Kiteworks appliances before kw2016.03.00 allows remote attackers to read files... | 4.3 - MEDIUM | 2016-08-26 | 2016-11-28 |
| CVE-2016-5663 json | Multiple cross-site scripting (XSS) vulnerabilities in oauth_callback.php on Accellion Kiteworks appliances before kw2016.03.... | 6.1 - MEDIUM | 2016-08-26 | 2016-11-28 |
| CVE-2016-5662 json | Accellion Kiteworks appliances before kw2016.03.00 use setuid-root permissions for /opt/bin/cli, which allows local users to ... | 7.8 - HIGH | 2016-08-26 | 2016-11-28 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Accellion | Kiteworks Appliance | kw2016.03.00 |