Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
data virtualization vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2020-9415
The TIBCO Data Virtualization Server component of TIBCO Software Inc.'s TIBCO Data Virtualization and TIBCO Data Virtualization for AWS Marketplace contains a vulnerability that theoretically allows a malicious authenticated user to download any arbitrary file from the affec...
Tibco Data Virtualization For Aws Marketplace
Tibco Data Virtualization 8.1.0
Tibco Data Virtualization 8.1.1
Tibco Data Virtualization 8.2.0
Tibco Data Virtualization 8.0.0
Tibco Data Virtualization
2.1
CVSSv2
CVE-2021-35500
The Data Virtualization Server component of TIBCO Software Inc.'s TIBCO Data Virtualization, TIBCO Data Virtualization, TIBCO Data Virtualization, and TIBCO Data Virtualization for AWS Marketplace contains a difficult to exploit vulnerability that allows a low privileged att...
Tibco Data Virtualization 8.5.0
Tibco Data Virtualization
Tibco Data Virtualization 8.4.0
Tibco Data Virtualization For Aws Marketplace
4
CVSSv2
CVE-2021-38971
IBM Data Virtualization on Cloud Pak for Data 1.3.0, 1.4.1, 1.5.0, 1.7.1 and 1.7.3 could allow an authorized user to bypass data masking rules and obtain sensitve information. IBM X-Force ID: 212620.
Ibm Data Virtualization On Cloud Pak For Data 1.4.1
Ibm Data Virtualization On Cloud Pak For Data 1.5.0
Ibm Data Virtualization On Cloud Pak For Data
Ibm Data Virtualization On Cloud Pak For Data 1.3.0
9
CVSSv2
CVE-2018-5428
The version control adapters component of TIBCO Data Virtualization (formerly known as Cisco Information Server) contains vulnerabilities that may allow for arbitrary command execution. Affected releases are TIBCO Data Virtualization: 7.0.5; 7.0.6.
Tibco Data Virtualization 7.0.5
Tibco Data Virtualization 7.0.6
NA
CVE-2022-30570
The Column Based Security component of TIBCO Software Inc.'s TIBCO Data Virtualization and TIBCO Data Virtualization for AWS Marketplace contains an easily exploitable vulnerability that allows a low privileged attacker with network access to obtain read access to applicatio...
Tibco Data Virtualization
Tibco Data Virtualization For Aws Marketplace
5
CVSSv2
CVE-2014-0171
XML external entity (XXE) vulnerability in StaxXMLFactoryProvider2 in Odata4j, as used in Red Hat JBoss Data Virtualization prior to 6.0.0 patch 4, allows remote malicious users to read arbitrary files via a crafted request to a REST endpoint.
Redhat Jboss Data Virtualization
Odata4j Project Odata4j -
4.3
CVSSv2
CVE-2014-0170
Teiid prior to 8.4.3 and prior to 8.7 and Red Hat JBoss Data Virtualization 6.0.0 before patch 3 allows remote malicious users to read arbitrary files via a crafted request to a REST endpoint, related to an XML External Entity (XXE) issue.
Redhat Jboss Data Virtualization
Jboss Teiid
Jboss Teiid 8.4
4.3
CVSSv2
CVE-2017-2658
It exists that the Dashbuilder login page as used in Red Hat JBoss BPM Suite prior to 6.4.2 and Red Hat JBoss Data Virtualization & Services prior to 6.4.3 could be opened in an IFRAME, which made it possible to intercept and manipulate requests. An attacker could use this fl...
Redhat Jboss Data Virtualization & Services
Redhat Jboss Bpm Suite
5
CVSSv2
CVE-2019-3888
A vulnerability was found in Undertow web server prior to 2.0.21. An information exposure of plain text credentials through log files because Connectors.executeRootHandler:402 logs the HttpServerExchange object at ERROR level using UndertowLogger.REQUEST_LOGGER.undertowRequestFai...
Redhat Undertow
Redhat Virtualization 4.0
Redhat Virtualization Host 4.0
Redhat Jboss Data Grid -
Redhat Openshift Application Runtimes -
Netapp Active Iq Unified Manager -
7.5
CVSSv2
CVE-2018-6499
Remote Code Execution in the following products Hybrid Cloud Management Containerized Suite HCM2017.11, HCM2018.02, HCM2018.05, Operations Bridge Containerized Suite 2017.11, 2018.02, 2018.05, Data Center Automation Containerized Suite 2017.01 until 2018.05, Service Management Au...
Microfocus Data Center Automation 2017.05
Microfocus Data Center Automation 2017.08
Microfocus Data Center Automation 2017.09
Microfocus Data Center Automation 2017.11
Microfocus Data Center Automation 2018.02
Microfocus Data Center Automation 2018.05
Microfocus Data Center Automation 2017.01
Microfocus Service Management Automation 2018.05
Microfocus Service Management Automation 2018.02
Microfocus Service Management Automation 2017.11
Microfocus Network Operations Management 2018.02
Microfocus Network Operations Management 2017.11
Microfocus Hybrid Cloud Management 2017.11
Microfocus Hybrid Cloud Management 2018.02
Microfocus Hybrid Cloud Management 2018.05
Microfocus Operations Bridge 2017.11
Microfocus Operations Bridge 2018.02
Microfocus Operations Bridge 2018.05
Microfocus Network Operations Management 2018.05
Microfocus Network Virtualization 12.50
Microfocus Service Virtualization 1.00
Microfocus Unified Functional Testing 12.50
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »