Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web console vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-15394
A vulnerability in the Stealthwatch Management Console (SMC) of Cisco Stealthwatch Enterprise could allow an unauthenticated, remote malicious user to bypass authentication and execute arbitrary actions with administrative privileges on an affected system. The vulnerability is du...
Cisco Stealthwatch Enterprise
7.2
CVSSv3
CVE-2017-11396
Vulnerability issues with the web service inspection of input parameters in Trend Micro Web Security Virtual Appliance 6.5 may allow potential attackers who already have administration rights to the console to implement remote code injections.
Trendmicro Interscan Web Security Virtual Appliance 6.5
5.4
CVSSv3
CVE-2023-24724
A stored cross site scripting (XSS) vulnerability exists in the user management module of the SAS 9.4 Admin Console, due to insufficient validation and sanitization of data input into the user creation and editing form fields. The product name is SAS Web Administration interface ...
Sas Web Administration Interface 9.4
8.8
CVSSv3
CVE-2021-41554
ARCHIBUS Web Central 21.3.3.815 (a version from 2014) does not properly validate requests for access to data and functionality in these affected endpoints: /archibus/schema/ab-edit-users.axvw, /archibus/schema/ab-data-dictionary-table.axvw, /archibus/schema/ab-schema-add-field.ax...
Archibus Web Central 21.3.3.815
5.4
CVSSv3
CVE-2020-14006
Solarwinds Orion (with Web Console WPM 2019.4.1, and Orion Platform HF4 or NPM HF2 2019.4) allows XSS via a Responsible Team.
Solarwinds Orion Network Performance Monitor 2019.4
Solarwinds Orion Web Performance Monitor 2019.4.1
5.4
CVSSv3
CVE-2020-14007
Solarwinds Orion (with Web Console WPM 2019.4.1, and Orion Platform HF4 or NPM HF2 2019.4) allows XSS via a name of an alert definition.
Solarwinds Orion Network Performance Monitor 2019.4
Solarwinds Orion Web Performance Monitor 2019.4.1
7.7
CVSSv3
CVE-2019-10716
An Information Disclosure issue in Verodin Director 3.5.3.1 and previous versions reveals usernames and passwords of integrated security technologies via a /integrations.json JSON REST API request.
Verodin Director
NA
CVE-2014-2976
Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in an HTTP GET request to TCP port 18081.
Sixnet Sixview Manager 2.4.1
1 EDB exploit
8.3
CVSSv3
CVE-2018-2825
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). The supported version that is affected is Java SE: 10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successf...
Oracle Jdk 10
Oracle Jre 10
Canonical Ubuntu Linux 18.04
Netapp E-series Santricity Os Controller
Netapp Cloud Backup -
Netapp Santricity Cloud Connector -
Netapp Oncommand Unified Manager
Netapp Snapmanager -
Netapp Oncommand Unified Manager -
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Oncommand Insight -
Netapp Oncommand Unified Manager 7.3
Netapp Virtual Storage Console
Netapp E-series Santricity Management -
Netapp E-series Santricity Storage Manager -
Netapp E-series Santricity Web Services -
Netapp Storage Replication Adapter
Netapp Vasa Provider
1 Article
8.3
CVSSv3
CVE-2018-2826
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). The supported version that is affected is Java SE: 10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successf...
Oracle Jdk 10
Oracle Jre 10
Canonical Ubuntu Linux 18.04
Netapp E-series Santricity Os Controller
Netapp Cloud Backup -
Netapp Santricity Cloud Connector -
Netapp Oncommand Unified Manager
Netapp Snapmanager -
Netapp Oncommand Unified Manager -
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Oncommand Insight -
Netapp Oncommand Unified Manager 7.3
Netapp Virtual Storage Console
Netapp E-series Santricity Management -
Netapp E-series Santricity Storage Manager -
Netapp E-series Santricity Web Services -
Netapp Storage Replication Adapter
Netapp Vasa Provider
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »