Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
encryption management server vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2021-36189
A missing encryption of sensitive data in Fortinet FortiClientEMS version 7.0.1 and below, version 6.4.4 and below allows malicious user to information disclosure via inspecting browser decrypted data
Fortinet Forticlient Enterprise Management Server
Fortinet Forticlient Enterprise Management Server 6.4.6
Fortinet Forticlient Enterprise Management Server 7.0.0
Fortinet Forticlient Enterprise Management Server 7.0.1
NA
CVE-2023-39246
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server version before 11.8.1 contain an Insecure Operation on Windows Junction Vulnerability during installation. A local malicious user could potentially exploit this vulnerability to create ...
Dell Endpoint Security Suite Enterprise
Dell Encryption
Dell Security Management Server
392
VMScore
CVE-2019-0090
Insufficient access control vulnerability in subsystem for Intel(R) CSME prior to 11.x, 12.0.35 Intel(R) TXE 3.x, 4.x, Intel(R) Server Platform Services 3.x, 4.x, Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow an unauthenticated user to potentially enable escalation ...
Intel Converged Security And Management Engine
Intel Server Platform Services
1 Github repository
1 Article
694
VMScore
CVE-2013-3625
An unspecified DLL file in Baramundi Management Suite 7.5 up to and including 8.9 uses a hardcoded encryption key, which makes it easier for malicious users to defeat cryptographic protection mechanisms by leveraging knowledge of this key from a product installation elsewhere.
Baramundi Management Suite 8.3
Baramundi Management Suite 8.6
Baramundi Management Suite 8.7
Baramundi Management Suite 8.8
Baramundi Management Suite 7.6
Baramundi Management Suite 8.9
Baramundi Management Suite 8.0
Baramundi Management Suite 8.1
Baramundi Management Suite 7.5
Baramundi Management Suite 8.2
Baramundi Management Suite 8.5
694
VMScore
CVE-2013-3593
Baramundi Management Suite 7.5 up to and including 8.9 uses cleartext for (1) client-server communication and (2) data storage, which allows remote malicious users to obtain sensitive information by sniffing the network, and allows context-dependent malicious users to obtain sens...
Baramundi Management Suite 8.3
Baramundi Management Suite 8.6
Baramundi Management Suite 7.6
Baramundi Management Suite 8.9
Baramundi Management Suite 8.0
Baramundi Management Suite 8.1
Baramundi Management Suite 8.7
Baramundi Management Suite 8.8
Baramundi Management Suite 7.5
Baramundi Management Suite 8.2
Baramundi Management Suite 8.5
694
VMScore
CVE-2013-3624
The OS deployment feature in Baramundi Management Suite 7.5 up to and including 8.9 stores credentials in cleartext on deployed machines, which allows remote malicious users to obtain sensitive information by reading a file. NOTE: this ID was also incorrectly mapped to a separate...
Baramundi Management Suite 8.2
Baramundi Management Suite 8.3
Baramundi Management Suite 8.0
Baramundi Management Suite 8.1
Baramundi Management Suite 7.5
Baramundi Management Suite 8.5
Baramundi Management Suite 8.6
Baramundi Management Suite 7.6
Baramundi Management Suite 8.9
Baramundi Management Suite 8.7
Baramundi Management Suite 8.8
409
VMScore
CVE-2013-5008
The agent and task-agent components in Symantec Management Platform 7.0 and 7.1 prior to 7.1 SP2 Mp1.1v7 rollup, as used in certain Altiris products, use the same registry-entry encryption key across different customers' installations, which makes it easier for local users t...
Symantec Management Platform 7.1
Symantec Management Platform 7.0
578
VMScore
CVE-2021-22158
The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) is vulnerable to XML external entity (XXE) injection in the Web Console. The vulnerability requires admin user privileges and knowledge of the XML file's encryption key to successfully exploit. All v...
Proofpoint Insider Threat Management
445
VMScore
CVE-2015-3962
Schneider Electric StruxureWare Building Expert MPM prior to 2.15 does not use encryption for the client-server data stream, which allows remote malicious users to discover credentials by sniffing the network.
Schneider-electric Struxureware Building Expert Multi-purpose Management
1 Article
445
VMScore
CVE-2013-1352
Verax NMS before 2.1.0 uses an encryption key that is hardcoded in a JAR archive.
Veraxsystems Network Management System
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »