Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
database security vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2021-31830
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in McAfee Database Security (DBSec) before 4.8.2 allows an administrator to embed JavaScript code when configuring the name of a database to be monitored. This would be tr...
Mcafee Database Security
6.3
CVSSv3
CVE-2020-7339
Use of a Broken or Risky Cryptographic Algorithm vulnerability in McAfee Database Security Server and Sensor before 4.8.0 in the form of a SHA1 signed certificate that would allow an attacker on the same local network to potentially intercept communication between the Server and ...
Mcafee Database Security
5.5
CVSSv3
CVE-2021-31831
Incorrect access to deleted scripts vulnerability in McAfee Database Security (DBSec) before 4.8.2 allows a remote authenticated malicious user to gain access to signed SQL scripts which have been marked as deleted or expired within the administrative console. This access was onl...
Mcafee Database Security
8
CVSSv3
CVE-2021-23895
Deserialization of untrusted data vulnerability in McAfee Database Security (DBSec) before 4.8.2 allows a remote authenticated malicious user to create a reverse shell with administrator privileges on the DBSec server via carefully constructed Java serialized object sent to the D...
Mcafee Database Security
5.5
CVSSv3
CVE-2016-0237
IBM Security Guardium Database Activity Monitor 10 allows local users to obtain sensitive information by reading cached browser data. IBM X-Force ID: 110328.
Ibm Security Guardium Database Activity Monitor 10.0
8.2
CVSSv3
CVE-2016-0235
IBM Security Guardium Database Activity Monitor 10 allows local users to have unspecified impact by leveraging administrator access to a hardcoded password, related to use on GRUB systems. IBM X-Force ID: 110326.
Ibm Security Guardium Database Activity Monitor 10.0
7.5
CVSSv3
CVE-2020-5360
Dell BSAFE Micro Edition Suite, versions before 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.
Dell Bsafe Micro-edition-suite
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
Oracle Database 18c
Oracle Database 19c
Oracle Http Server 11.1.1.9.0
Oracle Http Server 12.1.3.0
Oracle Http Server 12.2.1.4.0
Oracle Security Service 11.1.1.9.0
Oracle Security Service 12.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 11.1.1.9.0
Oracle Weblogic Server Proxy Plug-in 12.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
7.5
CVSSv3
CVE-2020-26185
Dell BSAFE Micro Edition Suite, versions before 4.5.1, contain a Buffer Over-Read Vulnerability.
Dell Bsafe Micro-edition-suite
Oracle Http Server 12.2.1.3.0
Oracle Security Service 12.2.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Database 12.1.0.2
Oracle Database 19c
Oracle Http Server 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
Oracle Database 21c
9.8
CVSSv3
CVE-2020-29506
Dell BSAFE Crypto-C Micro Edition, versions prior to 4.1.5, and Dell BSAFE Micro Edition Suite, versions prior to 4.5.2, contain an Observable Timing Discrepancy Vulnerability.
Dell Bsafe Micro-edition-suite
Dell Bsafe Crypto-c-micro-edition
Oracle Http Server 12.2.1.3.0
Oracle Security Service 12.2.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Database 12.1.0.2
Oracle Database 19c
Oracle Http Server 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
Oracle Database 21c
9.8
CVSSv3
CVE-2020-29507
Dell BSAFE Crypto-C Micro Edition, versions prior to 4.1.4, and Dell BSAFE Micro Edition Suite, versions prior to 4.4, contain an Improper Input Validation Vulnerability.
Dell Bsafe Crypto-c-micro-edition
Dell Bsafe Micro-edition-suite
Oracle Http Server 12.2.1.3.0
Oracle Security Service 12.2.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Database 12.1.0.2
Oracle Database 19c
Oracle Http Server 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
Oracle Database 21c
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »