Known Vulnerabilities for products from Riverbed

Listed below are 17 of the newest known vulnerabilities associated with the vendor "Riverbed".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2021-43271	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	6.8 - MEDIUM	2022-06-03	2022-06-15
CVE-2021-42857	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	5.3 - MEDIUM	2022-03-10	2022-03-15
CVE-2021-42856	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	6.1 - MEDIUM	2022-03-10	2022-03-15
CVE-2021-42855	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	7.8 - HIGH	2022-03-10	2022-08-09
CVE-2021-42854	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	9.8 - CRITICAL	2022-03-10	2022-03-15
CVE-2021-42853	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	9.8 - CRITICAL	2022-03-10	2022-03-15
CVE-2021-42787	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	9.8 - CRITICAL	2022-03-10	2022-03-15
CVE-2021-42786	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	9.8 - CRITICAL	2022-03-10	2022-03-16
CVE-2020-15593	SteelCentral Aternity Agent 11.0.0.120 on Windows mishandles IPC. It uses an executable running as a high privileged Windows ...	7.8 - HIGH	2020-07-27	2021-07-21
CVE-2020-15592	SteelCentral Aternity Agent before 11.0.0.120 on Windows allows Privilege Escalation via a crafted file. It uses an executabl...	7.5 - HIGH	2020-07-27	2020-07-30
CVE-2019-3800	CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the use...	7.8 - HIGH	2019-08-05	2019-10-09
CVE-2017-7693	Directory traversal vulnerability in viewer_script.jsp in Riverbed OPNET App Response Xpert (ARX) version 9.6.1 allows remote...	6.5 - MEDIUM	2017-08-26	2017-09-02
CVE-2017-7307	Riverbed RiOS before 9.0.1 does not properly restrict shell access in single-user mode, which makes it easier for physically ...	6.8 - MEDIUM	2017-04-04	2019-10-03
CVE-2017-7306	DISPUTED Riverbed RiOS through 9.6.0 has a weak default password for the secure vault, which makes it easier for physic...	6.4 - MEDIUM	2017-04-04	2023-11-07
CVE-2017-7305	DISPUTED Riverbed RiOS through 9.6.0 does not require a bootloader password, which makes it easier for physically proxi...	4.6 - MEDIUM	2017-04-04	2023-11-07
CVE-2017-5670	Riverbed RiOS through 9.6.0 deletes the secure vault with the rm program (not shred or srm), which makes it easier for physic...	4.6 - MEDIUM	2017-04-04	2017-05-24
CVE-2014-5348	Cross-site scripting (XSS) vulnerability in apps/zxtm/locallog.cgi in Riverbed Stingray (aka SteelApp) Traffic Manager Virtua...	4.3 - MEDIUM	2014-08-19	2014-08-20

Known software with vulnerabilities from Riverbed

Type	Vendor	Product	Version
Operating System	Riverbed	Rios	4.1.12
Operating System	Riverbed	Riverbed Optimization System	-
Application	Riverbed	Steelapp Traffic Manager	9.6
Application	Riverbed	Steelcentral Appinternals	-
Application	Riverbed	Steelcentral Aternity Agent	11.0.0.120