Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bw vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-20238
A vulnerability in the single sign-on (SSO) implementation of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote malicious user to forge the credentials required to access an affected system. This v...
Cisco Broadworks Application Delivery Platform Ri.2023.06
Cisco Broadworks Application Delivery Platform Ri.2023.07
Cisco Broadworks Xtended Services Platform
Cisco Broadworks Xtended Services Platform 2023.06
Cisco Broadworks Xtended Services Platform 2023.07
7.8
CVSSv3
CVE-2023-20216
A vulnerability in the privilege management functionality of all Cisco BroadWorks server types could allow an authenticated, local malicious user to elevate privileges to root on an affected system. This vulnerability is due to incorrect implementation of user role permissions. A...
Cisco Broadworks Application Server
Cisco Broadworks Application Delivery Platform
Cisco Broadworks Network Server
Cisco Broadworks Profile Server
Cisco Broadworks Xtended Services Platform
Cisco Broadworks Troubleshooting Server
Cisco Broadworks Network Function Manager
Cisco Broadworks Network Database Server
Cisco Broadworks Execution Server
Cisco Broadworks Database Server
Cisco Broadworks Service Control Function Server
Cisco Broadworks Media Server
6
CVSSv3
CVE-2023-20210
A vulnerability in Cisco BroadWorks could allow an authenticated, local malicious user to elevate privileges to the root user on an affected device. The vulnerability is due to insufficient input validation by the operating system CLI. An attacker could exploit this vulnerability...
Cisco Broadworks Application Delivery Platform Firmware 23.0
Cisco Broadworks Application Delivery Platform Firmware 24.0
Cisco Broadworks Application Delivery Platform Firmware 25.0
Cisco Broadworks Application Server Firmware 23.0
Cisco Broadworks Application Server Firmware 24.0
Cisco Broadworks Application Server Firmware 25.0
Cisco Broadworks Database Server Firmware 23.0
Cisco Broadworks Database Server Firmware 24.0
Cisco Broadworks Database Server Firmware 25.0
Cisco Broadworks Database Troubleshooting Server Firmware 23.0
Cisco Broadworks Database Troubleshooting Server Firmware 24.0
Cisco Broadworks Database Troubleshooting Server Firmware 25.0
Cisco Broadworks Execution Server Firmware 23.0
Cisco Broadworks Execution Server Firmware 24.0
Cisco Broadworks Execution Server Firmware 25.0
Cisco Broadworks Media Server Firmware 23.0
Cisco Broadworks Media Server Firmware 24.0
Cisco Broadworks Media Server Firmware 25.0
Cisco Broadworks Messaging Server Firmware 23.0
Cisco Broadworks Messaging Server Firmware 24.0
Cisco Broadworks Messaging Server Firmware 25.0
Cisco Broadworks Network Database Server Firmware 23.0
6.5
CVSSv3
CVE-2023-33992
The SAP BW BICS communication layer in SAP Business Warehouse and SAP BW/4HANA - version SAP_BW 730, SAP_BW 731, SAP_BW 740, SAP_BW 730, SAP_BW 750, DW4CORE 100, DW4CORE 200, DW4CORE 300, may expose unauthorized cell values to the data response. To be able to exploit this, the us...
Sap Bw\\/4hana 200
Sap Bw\\/4hana 100
Sap Business Warehouse 731
Sap Business Warehouse 740
Sap Business Warehouse 750
Sap Business Warehouse 730
Sap Bw\\/4hana 300
7.5
CVSSv3
CVE-2023-31761
Weak security in the transmitter of Blitzwolf BW-IS22 Smart Home Security Alarm v1.0 allows malicious users to gain full access to the system via a code replay attack.
Blitzwolf Bw-is22 Firmware 1.0
NA
CVE-2023-20125
A vulnerability in the local interface of Cisco BroadWorks Network Server could allow an unauthenticated, remote attacker to exhaust system resources, causing a denial of service (DoS) condition. This vulnerability exists because rate limiting does not occur for certain incoming ...
8.6
CVSSv3
CVE-2023-20020
A vulnerability in the Device Management Servlet application of Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. ...
Cisco Broadworks Xtended Services Platform
Cisco Broadworks Application Delivery Platform Device Management
6.1
CVSSv3
CVE-2023-20019
A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform, Cisco BroadWorks Application Server, and Cisco BroadWorks Xtended Services Platform could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XS...
Cisco Broadworks Xtended Services Platform
Cisco Broadworks Application Delivery Platform
Cisco Broadworks Application Server
NA
CVE-2022-20948
A vulnerability in the web management interface of Cisco BroadWorks Hosted Thin Receptionist could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient user input validati...
7.8
CVSSv3
CVE-2022-31591
SAP BusinessObjects BW Publisher Service - versions 420, 430, uses a search path that contains an unquoted element. A local attacker can gain elevated privileges by inserting an executable file in the path of the affected service
Sap Businessobjects Bw Publisher Service 420
Sap Businessobjects Bw Publisher Service 430
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »