Product
silver peak unity orchestrator
6 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2020-12147
CVE-2020-12146
CVE-2020-12145
CVE-2020-12144
CVE-2020-12143
CVE-2020-12142
< 8.9.11\+
In Silver Peak Unity Orchestrator versions prior to 8.9.11+, 8.10.11+, or 9.0.1+, an authenticated user can make unauthorized MySQ
< 8.9.11\+
In Silver Peak Unity Orchestrator versions prior to 8.9.11+, 8.10.11+, or 9.0.1+, an authenticated user can access, modify, and de
< 8.9.11\+
Silver Peak Unity Orchestrator versions prior to 8.9.11+, 8.10.11+, or 9.0.1+ uses HTTP headers to authenticate REST API calls fro
< 8.9.2
The certificate used to identify the Silver Peak Cloud Portal to EdgeConnect devices is not validated. This makes it possible for
< 8.9.2
The certificate used to identify Orchestrator to EdgeConnect devices is not validated, which makes it possible for someone to esta
< 8.9.2
1. IPSec UDP key material can be retrieved from machine-to-machine interfaces and human-accessible interfaces by a user with admin