Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
element software management vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-20179
A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote malicious user to inject HTML content. This vulnerability is due to improper validation of user-supplied data in element fie...
Cisco Sd-wan Vmanage
6.5
CVSSv3
CVE-2023-36054
lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) prior to 1.20.2 and 1.21.x prior to 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because _xdr_kadm5_principal_ent_rec does not validate the relationship between n_...
Mit Kerberos 5 1.21
Mit Kerberos 5
Debian Debian Linux 10.0
Netapp Hci -
Netapp Active Iq Unified Manager -
Netapp Management Services For Element Software -
Netapp Ontap Tools -
Netapp Clustered Data Ontap 9.0
1 Github repository
5.3
CVSSv3
CVE-2023-2975
Issue summary: The AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries which are unauthenticated as a consequence. Impact summary: Applications that use the AES-SIV algorithm and want to authenticate empty data entries as associated...
Openssl Openssl
Netapp Ontap Select Deploy Administration Utility -
Netapp Management Services For Element Software And Netapp Hci -
6.1
CVSSv3
CVE-2020-23064
Cross Site Scripting vulnerability in jQuery 2.2.0 up to and including 3.x prior to 3.5.0 allows a remote malicious user to execute arbitrary code via the <options> element.
Jquery Jquery
Netapp Cloud Backup -
Netapp Active Iq Unified Manager -
Netapp Management Services For Element Software And Netapp Hci -
Netapp Brocade San Navigator -
Netapp Virtual Desktop Service -
5.4
CVSSv3
CVE-2023-32685
Kanboard is project management software that focuses on the Kanban methodology. Due to improper handling of elements under the `contentEditable` element, maliciously crafted clipboard content can inject arbitrary HTML tags into the DOM. A low-privileged attacker with permission t...
Kanboard Kanboard
7.5
CVSSv3
CVE-2023-24329
An issue in the urllib.parse component of Python prior to 3.11.4 allows malicious users to bypass blocklisting methods by supplying a URL that starts with blank characters.
Python Python
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Fedoraproject Fedora 38
Netapp Ontap Select Deploy Administration Utility -
Netapp Active Iq Unified Manager -
Netapp Management Services For Element Software -
Netapp Management Services For Netapp Hci -
1 Github repository
8.1
CVSSv3
CVE-2022-37966
Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2019 -
Microsoft Windows Server 2022 -
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Netapp Management Services For Element Software -
Netapp Management Services For Netapp Hci -
Samba Samba
3 Github repositories
1 Article
7.2
CVSSv3
CVE-2022-37967
Windows Kerberos Elevation of Privilege Vulnerability
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2019 -
Microsoft Windows Server 2022 -
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Netapp Management Services For Element Software -
Netapp Management Services For Netapp Hci -
Samba Samba
9 Github repositories
1 Article
8.1
CVSSv3
CVE-2022-38023
Netlogon RPC Elevation of Privilege Vulnerability
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2019 -
Microsoft Windows Server 2022 -
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Netapp Management Services For Element Software -
Netapp Management Services For Netapp Hci -
Samba Samba
2 Github repositories
7.5
CVSSv3
CVE-2022-45061
An issue exists in Python prior to 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, such that a crafted, unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames...
Python Python 3.11.0
Python Python
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Netapp Element Software -
Netapp Ontap Select Deploy Administration Utility -
Netapp Hci -
Netapp Active Iq Unified Manager -
Netapp E-series Performance Analyzer -
Netapp Management Services For Element Software -
Netapp Bootstrap Os -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »