Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advisor vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-5352
Dell EMC Data Protection Advisor 6.4, 6.5 and 18.1 contain an OS command injection vulnerability. A remote authenticated malicious user may exploit this vulnerability to execute arbitrary commands on the affected system.
Dell Emc Data Protection Advisor 6.4
Dell Emc Data Protection Advisor 6.5
Dell Emc Data Protection Advisor 18.1
9.8
CVSSv3
CVE-2017-8013
EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts with hard-coded passwords and various privileges. Affected accounts are: "Apollo System Test", "emc.dpa.agent.logon" and "emc.dpa.metrics.logon&quo...
Emc Data Protection Advisor 6.4.0
Emc Data Protection Advisor 6.3.0
7.8
CVSSv3
CVE-2018-1206
Dell EMC Data Protection Advisor versions before 6.3 Patch 159 and Dell EMC Data Protection Advisor versions before 6.4 Patch 110 contain a hardcoded database account with administrative privileges. The affected account is "apollosuperuser." An attacker with local acces...
Emc Data Protection Advisor 6.3.0
Emc Data Protection Advisor 6.4.0
7.2
CVSSv3
CVE-2019-18582
Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71 contain a server-side template injection vulnerability in the REST API. A remote authenticated malicious user with administrative privileges may potential...
Dell Emc Data Protection Advisor 6.3
Dell Emc Data Protection Advisor 6.4
Dell Emc Data Protection Advisor 6.5
Dell Emc Data Protection Advisor 18.1
Dell Emc Data Protection Advisor 18.2
Dell Emc Data Protection Advisor 19.1
Dell Emc Integrated Data Protection Appliance Firmware 2.0
Dell Emc Integrated Data Protection Appliance Firmware 2.1
Dell Emc Integrated Data Protection Appliance Firmware 2.2
Dell Emc Integrated Data Protection Appliance Firmware 2.3
Dell Emc Integrated Data Protection Appliance Firmware 2.4
7.2
CVSSv3
CVE-2019-18581
Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71 contain a server missing authorization vulnerability in the REST API. A remote authenticated malicious user with administrative privileges may potentially...
Dell Emc Data Protection Advisor 6.3
Dell Emc Data Protection Advisor 6.4
Dell Emc Data Protection Advisor 6.5
Dell Emc Data Protection Advisor 18.1
Dell Emc Data Protection Advisor 18.2
Dell Emc Data Protection Advisor 19.1
Dell Emc Integrated Data Protection Appliance Firmware 2.0
Dell Emc Integrated Data Protection Appliance Firmware 2.1
Dell Emc Integrated Data Protection Appliance Firmware 2.2
Dell Emc Integrated Data Protection Appliance Firmware 2.3
Dell Emc Integrated Data Protection Appliance Firmware 2.4
7.8
CVSSv3
CVE-2022-21128
Insufficient control flow management in the Intel(R) Advisor software before version 7.6.0.37 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Advisor
7.8
CVSSv3
CVE-2021-23152
Improper access control in the Intel(R) Advisor software before version 2021.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Advisor
7.8
CVSSv3
CVE-2021-33129
Incorrect default permissions in the software installer for the Intel(R) Advisor before version 2021.4.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Advisor
5.4
CVSSv3
CVE-2023-1767
The Snyk Advisor website (https://snyk.io/advisor/) was vulnerable to a stored XSS before 28th March 2023. A feature of Snyk Advisor is to display the contents of a scanned package's Readme on its package health page. An attacker could create a package in NPM with an associa...
Snyk Advisor
1 Github repository
8.1
CVSSv3
CVE-2018-11048
Dell EMC Data Protection Advisor, versions 6.2, 6,3, 6.4, 6.5 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 contain a XML External Entity (XXE) Injection vulnerability in the REST API. An authenticated remote malicious user could potentially exploit t...
Dell Emc Data Protection Advisor 6.2
Dell Emc Data Protection Advisor 6.3
Dell Emc Data Protection Advisor 6.4
Dell Emc Data Protection Advisor 6.5
Dell Emc Integrated Data Protection Appliance 2.0
Dell Emc Integrated Data Protection Appliance 2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »