Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advisor vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-5351
Dell EMC Data Protection Advisor versions 6.4, 6.5 and 18.1 contain an undocumented account with limited privileges that is protected with a hard-coded password. A remote unauthenticated malicious user with the knowledge of the hard-coded password may login to the system and gain...
Dell Emc Data Protection Advisor 6.4
Dell Emc Data Protection Advisor 6.5
Dell Emc Data Protection Advisor 18.1
7.2
CVSSv2
CVE-2018-1206
Dell EMC Data Protection Advisor versions before 6.3 Patch 159 and Dell EMC Data Protection Advisor versions before 6.4 Patch 110 contain a hardcoded database account with administrative privileges. The affected account is "apollosuperuser." An attacker with local acces...
Emc Data Protection Advisor 6.3.0
Emc Data Protection Advisor 6.4.0
7.5
CVSSv2
CVE-2017-8013
EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: "Apollo System Test", "emc.dpa.agent.logon" and "emc.dpa.metrics.logon&quo...
Emc Data Protection Advisor 6.4.0
Emc Data Protection Advisor 6.3.0
9
CVSSv2
CVE-2019-18581
Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71 contain a server missing authorization vulnerability in the REST API. A remote authenticated malicious user with administrative privileges may potentially...
Dell Emc Data Protection Advisor 6.3
Dell Emc Data Protection Advisor 6.4
Dell Emc Data Protection Advisor 6.5
Dell Emc Data Protection Advisor 18.1
Dell Emc Data Protection Advisor 18.2
Dell Emc Data Protection Advisor 19.1
Dell Emc Integrated Data Protection Appliance Firmware 2.0
Dell Emc Integrated Data Protection Appliance Firmware 2.1
Dell Emc Integrated Data Protection Appliance Firmware 2.2
Dell Emc Integrated Data Protection Appliance Firmware 2.3
Dell Emc Integrated Data Protection Appliance Firmware 2.4
9
CVSSv2
CVE-2019-18582
Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71 contain a server-side template injection vulnerability in the REST API. A remote authenticated malicious user with administrative privileges may potential...
Dell Emc Data Protection Advisor 6.3
Dell Emc Data Protection Advisor 6.4
Dell Emc Data Protection Advisor 6.5
Dell Emc Data Protection Advisor 18.1
Dell Emc Data Protection Advisor 18.2
Dell Emc Data Protection Advisor 19.1
Dell Emc Integrated Data Protection Appliance Firmware 2.0
Dell Emc Integrated Data Protection Appliance Firmware 2.1
Dell Emc Integrated Data Protection Appliance Firmware 2.2
Dell Emc Integrated Data Protection Appliance Firmware 2.3
Dell Emc Integrated Data Protection Appliance Firmware 2.4
4.6
CVSSv2
CVE-2021-23152
Improper access control in the Intel(R) Advisor software before version 2021.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Advisor
4.6
CVSSv2
CVE-2021-33129
Incorrect default permissions in the software installer for the Intel(R) Advisor before version 2021.4.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Advisor
4.6
CVSSv2
CVE-2022-21128
Insufficient control flow management in the Intel(R) Advisor software before version 7.6.0.37 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Advisor
NA
CVE-2023-1767
The Snyk Advisor website (https://snyk.io/advisor/) was vulnerable to a stored XSS before 28th March 2023. A feature of Snyk Advisor is to display the contents of a scanned package's Readme on its package health page. An attacker could create a package in NPM with an associa...
Snyk Advisor
1 Github repository
5.5
CVSSv2
CVE-2018-11048
Dell EMC Data Protection Advisor, versions 6.2, 6,3, 6.4, 6.5 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 contain a XML External Entity (XXE) Injection vulnerability in the REST API. An authenticated remote malicious user could potentially exploit t...
Dell Emc Data Protection Advisor 6.2
Dell Emc Data Protection Advisor 6.3
Dell Emc Data Protection Advisor 6.4
Dell Emc Data Protection Advisor 6.5
Dell Emc Integrated Data Protection Appliance 2.0
Dell Emc Integrated Data Protection Appliance 2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »