Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
encryption management server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-32479
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server versions before 11.9.0 contain privilege escalation vulnerability due to improper ACL of the non-default installation directory. A local malicious user could potentially exploit this vu...
Dell Encryption
Dell Endpoint Security Suite Enterprise
Dell Security Management Server
356
VMScore
CVE-2021-36189
A missing encryption of sensitive data in Fortinet FortiClientEMS version 7.0.1 and below, version 6.4.4 and below allows malicious user to information disclosure via inspecting browser decrypted data
Fortinet Forticlient Enterprise Management Server 7.0.0
Fortinet Forticlient Enterprise Management Server 7.0.1
Fortinet Forticlient Enterprise Management Server
Fortinet Forticlient Enterprise Management Server 6.4.6
392
VMScore
CVE-2019-0090
Insufficient access control vulnerability in subsystem for Intel(R) CSME prior to 11.x, 12.0.35 Intel(R) TXE 3.x, 4.x, Intel(R) Server Platform Services 3.x, 4.x, Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow an unauthenticated user to potentially enable escalation ...
Intel Converged Security And Management Engine
Intel Server Platform Services
1 Github repository
1 Article
694
VMScore
CVE-2013-3625
An unspecified DLL file in Baramundi Management Suite 7.5 up to and including 8.9 uses a hardcoded encryption key, which makes it easier for malicious users to defeat cryptographic protection mechanisms by leveraging knowledge of this key from a product installation elsewhere.
Baramundi Management Suite 8.2
Baramundi Management Suite 7.5
Baramundi Management Suite 7.6
Baramundi Management Suite 8.3
Baramundi Management Suite 8.6
Baramundi Management Suite 8.9
Baramundi Management Suite 8.0
Baramundi Management Suite 8.5
Baramundi Management Suite 8.1
Baramundi Management Suite 8.8
Baramundi Management Suite 8.7
694
VMScore
CVE-2013-3593
Baramundi Management Suite 7.5 up to and including 8.9 uses cleartext for (1) client-server communication and (2) data storage, which allows remote malicious users to obtain sensitive information by sniffing the network, and allows context-dependent malicious users to obtain sens...
Baramundi Management Suite 8.2
Baramundi Management Suite 7.5
Baramundi Management Suite 7.6
Baramundi Management Suite 8.3
Baramundi Management Suite 8.6
Baramundi Management Suite 8.9
Baramundi Management Suite 8.0
Baramundi Management Suite 8.5
Baramundi Management Suite 8.1
Baramundi Management Suite 8.8
Baramundi Management Suite 8.7
694
VMScore
CVE-2013-3624
The OS deployment feature in Baramundi Management Suite 7.5 up to and including 8.9 stores credentials in cleartext on deployed machines, which allows remote malicious users to obtain sensitive information by reading a file. NOTE: this ID was also incorrectly mapped to a separate...
Baramundi Management Suite 8.2
Baramundi Management Suite 7.5
Baramundi Management Suite 7.6
Baramundi Management Suite 8.3
Baramundi Management Suite 8.6
Baramundi Management Suite 8.9
Baramundi Management Suite 8.0
Baramundi Management Suite 8.5
Baramundi Management Suite 8.1
Baramundi Management Suite 8.8
Baramundi Management Suite 8.7
409
VMScore
CVE-2013-5008
The agent and task-agent components in Symantec Management Platform 7.0 and 7.1 prior to 7.1 SP2 Mp1.1v7 rollup, as used in certain Altiris products, use the same registry-entry encryption key across different customers' installations, which makes it easier for local users t...
Symantec Management Platform 7.0
Symantec Management Platform 7.1
578
VMScore
CVE-2021-22158
The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) is vulnerable to XML external entity (XXE) injection in the Web Console. The vulnerability requires admin user privileges and knowledge of the XML file's encryption key to successfully exploit. All v...
Proofpoint Insider Threat Management
383
VMScore
CVE-2018-9073
Lenovo Chassis Management Module (CMM) prior to version 2.0.0 utilizes a hardcoded encryption key to protect certain secrets. Possession of the key can allow an attacker that has already compromised the server to decrypt these secrets.
Lenovo Chassis Management Module Firmware
445
VMScore
CVE-2015-3962
Schneider Electric StruxureWare Building Expert MPM prior to 2.15 does not use encryption for the client-server data stream, which allows remote malicious users to discover credentials by sniffing the network.
Schneider-electric Struxureware Building Expert Multi-purpose Management
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »