This page lists publicly disclosed CVE vulnerabilities affecting infoblox netmri (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-52874 | In Infoblox NETMRI before 7.6.1, authenticated users can perform SQL injection attacks. | [email protected] | 8.8 | 6.58% | 2025-05-22 | 2026-06-17 |
| CVE-2025-32815 | An issue was discovered in Infoblox NETMRI before 7.6.1. Authentication Bypass via a Hardcoded credential can occur. | [email protected] | 6.5 | 32.77% | 2025-05-22 | 2026-06-17 |
| CVE-2025-32814 | An issue was discovered in Infoblox NETMRI before 7.6.1. Unauthenticated SQL Injection can occur. | [email protected] | 9.8 | 35.77% | 2025-05-22 | 2026-06-17 |
| CVE-2025-32813 | An issue was discovered in Infoblox NETMRI before 7.6.1. Remote Unauthenticated Command Injection can occur. | [email protected] | 7.2 | 42.35% | 2025-05-22 | 2026-06-17 |
| CVE-2024-54188 | Infoblox NETMRI before 7.6.1 has a vulnerability allowing remote authenticated users to read arbitrary files with root access. | [email protected] | 5.3 | 5.75% | 2025-05-22 | 2026-06-17 |
| CVE-2018-6643 | Infoblox NetMRI 7.1.1 has Reflected Cross-Site Scripting via the /api/docs/index.php query parameter. | [email protected] | 6.1 | 0.81% | 2018-08-28 | 2026-06-16 |
| CVE-2016-6484 | CRLF injection vulnerability in Infoblox Network Automation NetMRI before 7.1.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the contentType parameter in a login action to config/userAdmin/login.tdf. | [email protected] | 6.1 | 1.83% | 2017-01-23 | 2026-06-16 |
| CVE-2015-2033 | Anyterm Daemon in Infoblox Network Automation NetMRI before NETMRI-23483 allows remote attackers to execute arbitrary commands with root privileges via a crafted terminal/anyterm-module request. | [email protected] | 10.0 | 2.96% | 2015-02-20 | 2026-06-16 |
| CVE-2014-3419 | Infoblox NetMRI before 6.8.5 has a default password of admin for the "root" MySQL database account, which makes it easier for local users to obtain access via unspecified vectors. | [email protected] | 7.2 | 0.46% | 2014-07-15 | 2026-06-16 |
| CVE-2014-3418 | config/userAdmin/login.tdf in Infoblox NetMRI before 6.8.5 allows remote attackers to execute arbitrary commands via shell metacharacters in the skipjackUsername parameter. | [email protected] | 10.0 | 7.17% | 2014-07-15 | 2026-06-16 |
| CVE-2011-5178 | Multiple cross-site scripting (XSS) vulnerabilities in netmri/config/userAdmin/login.tdf in Infoblox NetMRI 6.0.2.42, 6.1.2, 6.2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) eulaAccepted or (2) mode parameter. | [email protected] | 4.3 | 1.38% | 2012-09-20 | 2026-06-16 |