Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
access manager vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2018-12480
Mitigates an XSS issue in NetIQ Access Manager versions before 4.4 SP3.
Microfocus Access Manager 4.4
Microfocus Access Manager 4.3
Microfocus Access Manager 4.2
Microfocus Access Manager 4.1
5.8
CVSSv2
CVE-2018-2587
Vulnerability in the Oracle Access Manager component of Oracle Fusion Middleware (subcomponent: Web Server Plugin). Supported versions that are affected are 10.1.4.3.0, 11.1.2.3.0 and 12.2.1.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network acce...
Oracle Access Manager 10.1.4.3.0
Oracle Access Manager 11.1.2.3.0
Oracle Access Manager 12.2.1.3.0
Oracle Adaptive Access Manager 11.1.2.3.0
4.6
CVSSv2
CVE-2022-29263
On F5 BIG-IP APM 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5.1, 14.1.x versions before 14.1.4.6, 13.1.x versions before 13.1.5, and all versions of 12.1.x and 11.6.x, as well as F5 BIG-IP APM Clients 7.x versions before 7.2.1.5, the BIG-IP Edge Client Component...
F5 Big-ip Access Policy Manager 12.1.2
F5 Big-ip Access Policy Manager 12.1.1
F5 Big-ip Access Policy Manager 12.1.0
F5 Big-ip Access Policy Manager 11.6.1
F5 Big-ip Access Policy Manager 13.1.0
F5 Big-ip Access Policy Manager 14.1.0
F5 Big-ip Access Policy Manager 15.1.0
F5 Big-ip Access Policy Manager 14.1.4
F5 Big-ip Access Policy Manager 16.1.0
F5 Big-ip Access Policy Manager 17.0.0
F5 Big-ip Access Policy Manager 11.6.3
F5 Big-ip Access Policy Manager 11.6.4
F5 Big-ip Access Policy Manager 11.6.5
F5 Big-ip Access Policy Manager 12.1.3
F5 Big-ip Access Policy Manager 12.1.4
F5 Big-ip Access Policy Manager 12.1.5
F5 Big-ip Access Policy Manager 12.1.6
F5 Big-ip Access Policy Manager 13.1.1
F5 Big-ip Access Policy Manager 13.1.3
F5 Big-ip Access Policy Manager 13.1.4
F5 Big-ip Access Policy Manager 13.1.5
F5 Big-ip Access Policy Manager 14.1.2
7.5
CVSSv2
CVE-2015-4963
IBM Security Access Manager for Web 7.x prior to 7.0.0.16 and 8.x prior to 8.0.1.3 mishandles WebSEAL HTTPTransformation requests, which allows remote malicious users to read or write to arbitrary files via unspecified vectors.
Ibm Security Access Manager For Web 7.0.0.6
Ibm Security Access Manager For Web 7.0.0.7
Ibm Security Access Manager For Web 7.0.0.14
Ibm Security Access Manager For Web 7.0.0.2
Ibm Security Access Manager For Web 7.0.0.3
Ibm Security Access Manager For Web 7.0.0.10
Ibm Security Access Manager For Web 7.0.0.11
Ibm Security Access Manager For Web 8.0.0.3
Ibm Security Access Manager For Web 8.0.0.4
Ibm Security Access Manager For Web 7.0.0.4
Ibm Security Access Manager For Web 7.0.0.5
Ibm Security Access Manager For Web 7.0.0.12
Ibm Security Access Manager For Web 7.0.0.13
Ibm Security Access Manager For Web 8.0.0.5
Ibm Security Access Manager For Web 8.0.0.22
Ibm Security Access Manager For Web 7.0.0.15
Ibm Security Access Manager For Web 8.0.0.31
Ibm Security Access Manager For Web 8.0.1.0
Ibm Security Access Manager For Web 7.0.0.1
Ibm Security Access Manager For Web 7.0.0.8
Ibm Security Access Manager For Web 7.0.0.9
Ibm Security Access Manager For Web 7.0
4.3
CVSSv2
CVE-2016-3018
IBM Security Access Manager for Web is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Security Access Manager For Web 8.0.0.3
Ibm Security Access Manager For Web 8.0.0.2
Ibm Security Access Manager For Mobile 8.0.0.3
Ibm Security Access Manager For Mobile 8.0.0.2
Ibm Security Access Manager For Web 8.0.1.3
Ibm Security Access Manager For Web 8.0.1.2
Ibm Security Access Manager For Mobile 8.0.1.4
Ibm Security Access Manager For Mobile 8.0.1.3
Ibm Security Access Manager 9.0.0.1
Ibm Security Access Manager 9.0.0
Ibm Security Access Manager For Web 8.0.1.0
Ibm Security Access Manager For Web 8.0.0.5
Ibm Security Access Manager For Mobile 8.0.1.2
Ibm Security Access Manager For Mobile 8.0.1.0
Ibm Security Access Manager For Mobile 8.0.0.5
Ibm Security Access Manager 9.0.1.0
Ibm Security Access Manager For Web 8.0.1.4
Ibm Security Access Manager For Web 8.0.0.1
Ibm Security Access Manager For Web 8.0.0.0
Ibm Security Access Manager For Mobile 8.0.0.1
Ibm Security Access Manager For Mobile 8.0.0.0
7.5
CVSSv2
CVE-2011-0322
Unspecified vulnerability in EMC RSA Access Manager Server 5.5.x, 6.0.x, and 6.1.x allows remote malicious users to access resources via unknown vectors.
Rsa Access Manager Server 5.5.3
Rsa Access Manager Server 6.1.2
Rsa Access Manager Server 6.1.3
Rsa Access Manager Server 6.0.4
Rsa Access Manager Server 6.1
4.3
CVSSv2
CVE-2016-3045
IBM Security Access Manager for Web stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referer header or browser history.
Ibm Security Access Manager For Web 7.0.0
Ibm Security Access Manager For Web 8.0.1.2
Ibm Security Access Manager For Web 8.0.1.1
Ibm Security Access Manager For Web 8.0.1
Ibm Security Access Manager For Web 8.0.0
Ibm Security Access Manager 9.0.1.0
Ibm Security Access Manager 9.0.0
Ibm Security Access Manager For Web 8.0.1.4
Ibm Security Access Manager For Mobile 8.0.1.2
Ibm Security Access Manager For Mobile 8.0.1.3
Ibm Security Access Manager For Mobile 8.0.1.4
Ibm Security Access Manager For Mobile 8.0.0.5
Ibm Security Access Manager For Mobile 8.0.0.0
Ibm Security Access Manager 9.0.0.1
Ibm Security Access Manager For Web 8.0.1.3
Ibm Security Access Manager For Mobile 8.0.1
9
CVSSv2
CVE-2016-3028
IBM Security Access Manager for Web 7.0 before IF2 and 8.0 prior to 8.0.1.4 IF3 and Security Access Manager 9.0 prior to 9.0.1.0 IF5 allow remote authenticated users to execute arbitrary commands by leveraging LMI admin access.
Ibm Security Access Manager For Web 7.0.0
Ibm Security Access Manager For Web 8.0.0
Ibm Security Access Manager For Web 8.0.0.2
Ibm Security Access Manager 9.0.0
Ibm Security Access Manager 9.0.0.1
Ibm Security Access Manager For Web 8.0.1
Ibm Security Access Manager For Web 8.0.1.2
Ibm Security Access Manager For Web 8.0.0.4
Ibm Security Access Manager For Web 8.0.0.5
Ibm Security Access Manager 9.0.1.0
Ibm Security Access Manager For Web 8.0.1.3
Ibm Security Access Manager For Web 8.0.1.4
5
CVSSv2
CVE-2022-27181
On F5 BIG-IP APM 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5.1, 14.1.x versions before 14.1.4.6, 13.1.x versions before 13.1.5, and all versions of 12.1.x and 11.6.x, when APM is configured on a virtual server and the associated access profile is configured wit...
F5 Big-ip Access Policy Manager 13.1.0
F5 Big-ip Access Policy Manager 14.1.0
F5 Big-ip Access Policy Manager 15.1.0
F5 Big-ip Access Policy Manager 14.1.4
F5 Big-ip Access Policy Manager 16.1.0
F5 Big-ip Access Policy Manager 16.1.2
F5 Big-ip Access Policy Manager 16.1.1
F5 Big-ip Access Policy Manager 15.1.5
F5 Big-ip Access Policy Manager 15.1.4
F5 Big-ip Access Policy Manager 15.1.3
F5 Big-ip Access Policy Manager 13.1.1
F5 Big-ip Access Policy Manager 13.1.3
F5 Big-ip Access Policy Manager 13.1.4
F5 Big-ip Access Policy Manager 13.1.5
F5 Big-ip Access Policy Manager 14.1.2
F5 Big-ip Access Policy Manager 14.1.3
F5 Big-ip Access Policy Manager 15.1.1
F5 Big-ip Access Policy Manager 15.1.2
5
CVSSv2
CVE-2016-3025
IBM Security Access Manager for Mobile 8.x prior to 8.0.1.4 IF3 and Security Access Manager 9.x prior to 9.0.1.0 IF5 do not properly restrict failed login attempts, which makes it easier for remote malicious users to obtain access via a brute-force approach.
Ibm Security Access Manager For Mobile 8.0.0.0
Ibm Security Access Manager For Mobile 8.0.1.2
Ibm Security Access Manager For Mobile 8.0.1.3
Ibm Security Access Manager For Mobile 8.0.0.3
Ibm Security Access Manager For Mobile 8.0.0.4
Ibm Security Access Manager 9.0.0.1
Ibm Security Access Manager 9.0.1.0
Ibm Security Access Manager For Mobile 8.0.0.5
Ibm Security Access Manager For Mobile 8.0.1
Ibm Security Access Manager For Mobile 8.0.0.1
Ibm Security Access Manager For Mobile 8.0.0.2
Ibm Security Access Manager For Mobile 8.0.1.4
Ibm Security Access Manager 9.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »