Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
database security vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv3
CVE-2019-3615
Data Leakage Attacks vulnerability in the web interface in McAfee Database Security prior to the 4.6.6 March 2019 update allows local users to expose passwords via incorrectly auto completing password fields in the admin browser login screen.
Mcafee Database Security
5.5
CVSSv3
CVE-2021-31831
Incorrect access to deleted scripts vulnerability in McAfee Database Security (DBSec) before 4.8.2 allows a remote authenticated malicious user to gain access to signed SQL scripts which have been marked as deleted or expired within the administrative console. This access was onl...
Mcafee Database Security
4.8
CVSSv3
CVE-2021-31830
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in McAfee Database Security (DBSec) before 4.8.2 allows an administrator to embed JavaScript code when configuring the name of a database to be monitored. This would be tr...
Mcafee Database Security
6.3
CVSSv3
CVE-2020-7339
Use of a Broken or Risky Cryptographic Algorithm vulnerability in McAfee Database Security Server and Sensor before 4.8.0 in the form of a SHA1 signed certificate that would allow an attacker on the same local network to potentially intercept communication between the Server and ...
Mcafee Database Security
8.2
CVSSv3
CVE-2016-0235
IBM Security Guardium Database Activity Monitor 10 allows local users to have unspecified impact by leveraging administrator access to a hardcoded password, related to use on GRUB systems. IBM X-Force ID: 110326.
Ibm Security Guardium Database Activity Monitor 10.0
5.5
CVSSv3
CVE-2016-0237
IBM Security Guardium Database Activity Monitor 10 allows local users to obtain sensitive information by reading cached browser data. IBM X-Force ID: 110328.
Ibm Security Guardium Database Activity Monitor 10.0
7.5
CVSSv3
CVE-2020-5360
Dell BSAFE Micro Edition Suite, versions before 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.
Dell Bsafe Micro-edition-suite
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
Oracle Database 18c
Oracle Database 19c
Oracle Http Server 11.1.1.9.0
Oracle Http Server 12.1.3.0
Oracle Http Server 12.2.1.4.0
Oracle Security Service 11.1.1.9.0
Oracle Security Service 12.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 11.1.1.9.0
Oracle Weblogic Server Proxy Plug-in 12.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
7.5
CVSSv3
CVE-2020-26185
Dell BSAFE Micro Edition Suite, versions before 4.5.1, contain a Buffer Over-Read Vulnerability.
Dell Bsafe Micro-edition-suite
Oracle Http Server 12.2.1.3.0
Oracle Security Service 12.2.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Database 12.1.0.2
Oracle Database 19c
Oracle Http Server 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
Oracle Database 21c
9.8
CVSSv3
CVE-2020-35168
Dell BSAFE Crypto-C Micro Edition, versions prior to 4.1.5, and Dell BSAFE Micro Edition Suite, versions prior to 4.6, contain an Observable Timing Discrepancy Vulnerability.
Dell Bsafe Crypto-c-micro-edition
Dell Bsafe Micro-edition-suite
Oracle Http Server 12.2.1.3.0
Oracle Security Service 12.2.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Database 12.1.0.2
Oracle Database 19c
Oracle Http Server 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
Oracle Database 21c
9.8
CVSSv3
CVE-2020-29508
Dell BSAFE Crypto-C Micro Edition, versions prior to 4.1.5, and Dell BSAFE Micro Edition Suite, versions prior to 4.6, contain an Improper Input Validation Vulnerability.
Dell Bsafe Crypto-c-micro-edition
Dell Bsafe Micro-edition-suite
Oracle Http Server 12.2.1.3.0
Oracle Security Service 12.2.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Database 12.1.0.2
Oracle Database 19c
Oracle Http Server 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
Oracle Database 21c
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »