Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infrastructure vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2022-29618
Due to insufficient input validation, SAP NetWeaver Development Infrastructure (Design Time Repository) - versions 7.30, 7.31, 7.40, 7.50, allows an unauthenticated malicious user to inject script into the URL and execute code in the user’s browser. On successful exploitati...
Sap Netweaver Development Infrastructure 7.30
Sap Netweaver Development Infrastructure 7.31
Sap Netweaver Development Infrastructure 7.40
Sap Netweaver Development Infrastructure 7.50
490
VMScore
CVE-2016-1358
Cisco Prime Infrastructure 2.2, 3.0, and 3.1(0.0) allows remote authenticated users to read arbitrary files or cause a denial of service via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) ...
Cisco Prime Infrastructure 3.0
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 3.1
578
VMScore
CVE-2018-2660
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 7.3.5.x and 8.0.x. Easily exploitable vulnerability allows low privileged attac...
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.1.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.2.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.3.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.4.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.2.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.0.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.3.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.1.0.0
516
VMScore
CVE-2018-2661
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 7.3.5.x and 8.0.x. Easily exploitable vulnerability allows unauthenticated atta...
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.2.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.2.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.0.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.3.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.4.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.3.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.1.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.1.0.0
383
VMScore
CVE-2021-33691
NWDI Notification Service versions - 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.SAP NetWeaver Development Infrastructure Notification Service allows a threat actor to send crafted scripts to a victi...
Sap Netweaver Development Infrastructure 7.31
Sap Netweaver Development Infrastructure 7.40
Sap Netweaver Development Infrastructure 7.50
668
VMScore
CVE-2018-13821
A lack of authentication, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows remote malicious users to conduct a variety of attacks, including file reading/writing.
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5.1
445
VMScore
CVE-2018-13819
A hardcoded secret key, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows malicious users to access sensitive information.
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5.1
445
VMScore
CVE-2018-13820
A hardcoded passphrase, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows malicious users to access sensitive information.
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.5.1
NA
CVE-2023-21901
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 8.0.7, 8.0.8, 8.0.9, 8.1.0, 8.1.1 and 8.1.2. Easily exploitable vulnerabil...
Oracle Financial Services Analytical Applications Infrastructure 8.0.7
Oracle Financial Services Analytical Applications Infrastructure 8.1.1
Oracle Financial Services Analytical Applications Infrastructure 8.1.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.8
Oracle Financial Services Analytical Applications Infrastructure 8.0.9
Oracle Financial Services Analytical Applications Infrastructure 8.1.2
801
VMScore
CVE-2016-1442
The administrative web interface in Cisco Prime Infrastructure (PI) prior to 3.1.1 allows remote authenticated users to execute arbitrary commands via crafted field values, aka Bug ID CSCuy96280.
Cisco Prime Infrastructure 3.1
Cisco Prime Infrastructure 3.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »