Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
privilege vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2018-12903
In CyberArk Endpoint Privilege Manager (formerly Viewfinity) 10.2.1.603, there is persistent XSS via an account name on the create token screen, the VfManager.asmx SelectAccounts->DisplayName screen, a user's groups in ConfigurationPage, the Dialog Title field, and App Gr...
Cyberark Endpoint Privilege Manager 10.2.1.603
8.8
CVSSv3
CVE-2022-22375
IBM Security Verify Privilege On-Premises 11.5 could allow a remote authenticated malicious user to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 221681.
Ibm Security Verify Privilege On-premises
5.3
CVSSv3
CVE-2022-22377
IBM Security Verify Privilege On-Premises 11.5 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in t...
Ibm Security Verify Privilege On-premises
4.3
CVSSv3
CVE-2022-22380
IBM Security Verify Privilege On-Premises 11.5 could allow an malicious user to spoof a trusted entity due to improperly validating certificates. IBM X-Force ID: 221957.
Ibm Security Verify Privilege On-premises
4.3
CVSSv3
CVE-2022-22384
IBM Security Verify Privilege On-Premises 11.5 could allow an malicious user to modify messages returned from the server due to hazardous input validation. IBM X-Force ID: 221961.
Ibm Security Verify Privilege On-premises
7.5
CVSSv3
CVE-2022-22385
IBM Security Verify Privilege On-Premises 11.5 could disclose sensitive information to an attacked due to the transmission of data in clear text. IBM X-Force ID: 221962.
Ibm Security Verify Privilege On-premises
5.9
CVSSv3
CVE-2022-22386
IBM Security Verify Privilege On-Premises 11.5 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in ...
Ibm Security Verify Privilege On-premises
7.1
CVSSv3
CVE-2021-29913
IBM Security Verify Privilege On-Premise 11.5 could allow an authenticated user to obtain sensitive information or perform unauthorized actions due to improper input validation. IBM X-Force ID: 207898.
Ibm Security Verify Privilege On-premises
4.3
CVSSv3
CVE-2021-20581
IBM Security Verify Privilege On-Premises 11.5 could allow a user to obtain sensitive information due to insufficient session expiration. IBM X-Force ID: 199324.
Ibm Security Verify Privilege On-premises
5.3
CVSSv3
CVE-2022-43889
IBM Security Verify Privilege On-Premises 11.5 could disclose sensitive information through an HTTP request that could aid an attacker in further attacks against the system. IBM X-Force ID: 240452.
Ibm Security Verify Privilege On-premises
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »