Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
data vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2021-38971
IBM Data Virtualization on Cloud Pak for Data 1.3.0, 1.4.1, 1.5.0, 1.7.1 and 1.7.3 could allow an authorized user to bypass data masking rules and obtain sensitve information. IBM X-Force ID: 212620.
Ibm Data Virtualization On Cloud Pak For Data 1.4.1
Ibm Data Virtualization On Cloud Pak For Data 1.5.0
Ibm Data Virtualization On Cloud Pak For Data
Ibm Data Virtualization On Cloud Pak For Data 1.3.0
3.5
CVSSv2
CVE-2016-5618
Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, 12.1.2.0.0, 12.1.3.0.0, 12.2.1.0.0, and 12.2.1.1.0 allows remote authenticated users to affect confidentiality via vectors related to Code Generation Engine.
Oracle Data Integrator 12.1.3.0.0
Oracle Data Integrator 11.1.1.7.0
Oracle Data Integrator 12.2.1.1.0
Oracle Data Integrator 11.1.1.9.0
Oracle Data Integrator 12.2.1.0.0
Oracle Data Integrator 12.1.2.0.0
6.8
CVSSv2
CVE-2015-6468
Cross-site request forgery (CSRF) vulnerability in Resource Data Management Data Manager prior to 2.2 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Resource Data Management Data Manager Data Manager
5.5
CVSSv2
CVE-2015-6470
Resource Data Management Data Manager prior to 2.2 allows remote authenticated users to modify arbitrary passwords via unspecified vectors.
Resource Data Management Data Manager Data Manager
4
CVSSv2
CVE-2020-9415
The TIBCO Data Virtualization Server component of TIBCO Software Inc.'s TIBCO Data Virtualization and TIBCO Data Virtualization for AWS Marketplace contains a vulnerability that theoretically allows a malicious authenticated user to download any arbitrary file from the affec...
Tibco Data Virtualization For Aws Marketplace
Tibco Data Virtualization 8.1.0
Tibco Data Virtualization 8.1.1
Tibco Data Virtualization 8.2.0
Tibco Data Virtualization 8.0.0
Tibco Data Virtualization
4
CVSSv2
CVE-2020-6256
SAP Master Data Governance, versions - 748, 749, 750, 751, 752, 800, 801, 802, 803, 804, allows users to display change request details without having required authorizations, due to Missing Authorization Check.
Sap Master Data Governance 748
Sap Master Data Governance 749
Sap Master Data Governance 750
Sap Master Data Governance 751
Sap Master Data Governance 752
Sap Master Data Governance 800
Sap Master Data Governance 801
Sap Master Data Governance 802
Sap Master Data Governance 803
Sap Master Data Governance 804
2.7
CVSSv2
CVE-2021-26988
Clustered Data ONTAP versions before 9.3P21, 9.5P16, 9.6P12, 9.7P8 and 9.8 are susceptible to a vulnerability which could allow unauthorized tenant users to discover information related to converting a 7-Mode directory to Cluster-mode such as Storage Virtual Machine (SVM) names, ...
Netapp Data Ontap 9.3.0
Netapp Data Ontap 9.5.0
Netapp Data Ontap 9.6.0
Netapp Data Ontap 9.7.0
Netapp Data Ontap 9.8.0
3.5
CVSSv2
CVE-2021-26989
Clustered Data ONTAP versions before 9.3P21, 9.5P16, 9.6P12, 9.7P9 and 9.8 are susceptible to a vulnerability which could allow a remote authenticated malicious user to cause a Denial of Service (DoS) on clustered Data ONTAP configured for SMB access.
Netapp Data Ontap 9.3.0
Netapp Data Ontap 9.5.0
Netapp Data Ontap 9.6.0
Netapp Data Ontap 9.7.0
Netapp Data Ontap 9.8.0
3.5
CVSSv2
CVE-2016-5602
Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, 12.1.3.0.0, 12.2.1.0.0, and 12.2.1.1.0 allows remote authenticated users to affect confidentiality via vectors related to Code Generation Engine.
Oracle Data Integrator 12.2.1.1.0
Oracle Data Integrator 11.1.1.9.0
Oracle Data Integrator 12.2.1.0.0
Oracle Data Integrator 12.1.3.0.0
Oracle Data Integrator 11.1.1.7.0
7.5
CVSSv2
CVE-2002-0695
Buffer overflow in the Transact-SQL (T-SQL) OpenRowSet component of Microsoft Data Access Components (MDAC) 2.5 up to and including 2.7 for SQL Server 7.0 or 2000 allows remote malicious users to execute arbitrary code via a query that calls the OpenRowSet command.
Microsoft Data Access Components 2.1.1.3711.11
Microsoft Data Access Components 2.12.4202.3
Microsoft Data Access Components 2.6
Microsoft Data Access Components 2.5
Microsoft Data Access Components 2.7
Microsoft Data Access Components 1.5
Microsoft Microsoft Data Access Components 2.12.4292.3 Ga Clean
Microsoft Data Access Components 2.0
Microsoft Data Access Components 2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »