Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
network virtualization vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2020-3138
A vulnerability in the upgrade component of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local malicious user to install a malicious file when upgrading. The vulnerability is due to insufficient signature validation. An attacker could exploit...
Cisco Enterprise Network Function Virtualization Infrastructure
1 Article
6.5
CVSSv3
CVE-2022-30570
The Column Based Security component of TIBCO Software Inc.'s TIBCO Data Virtualization and TIBCO Data Virtualization for AWS Marketplace contains an easily exploitable vulnerability that allows a low privileged attacker with network access to obtain read access to applicatio...
Tibco Data Virtualization
Tibco Data Virtualization For Aws Marketplace
6.5
CVSSv3
CVE-2018-0459
A vulnerability in the web-based management interface of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to cause an affected system to reboot or shut down. The vulnerability is due to insufficient server-side authorization...
Cisco Network Functions Virtualization Infrastructure -
6.5
CVSSv3
CVE-2018-0460
A vulnerability in the REST API of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to read any file on an affected system. The vulnerability is due to insufficient authorization and parameter validation checks. An attacker ...
Cisco Network Functions Virtualization Infrastructure -
7.8
CVSSv3
CVE-2021-22299
There is a local privilege escalation vulnerability in some Huawei products. A local, authenticated attacker could craft specific commands to exploit this vulnerability. Successful exploitation may cause the malicious user to obtain a higher privilege. Affected product versions i...
Huawei Manageone 6.5.1.1
Huawei Manageone 8.0.1
Huawei Manageone 8.0.0
Huawei Imaster Mae-m V100r020c10spc220
Huawei Network Functions Virtualization Fusionsphere 6.5.1
Huawei Manageone 6.5.0
Huawei Manageone 6.5.1
Huawei Smc2.0 Firmware V600r019c00
Huawei Smc2.0 Firmware V600r019c10
5.5
CVSSv3
CVE-2021-20191
A flaw was found in ansible. Credentials, such as secrets, are being disclosed in console log by default and not protected by no_log feature when using those modules. An attacker can take advantage of this information to steal those credentials. The highest threat from this vulne...
Oracle Virtualization 4.0
Redhat Ansible Tower 3.0
Redhat Google Cloud Platform Ansible Collection 1.0.2
Redhat Cisco Nx-os Collection
Redhat Ansible
Redhat Community General Collection
Redhat Community Network Collection
Redhat Docker Community Collection
NA
CVE-2013-5493
The diagnostic module in the firmware on Cisco Virtualization Experience Client 6000 devices allows local users to bypass intended access restrictions and execute arbitrary commands via unspecified vectors, aka Bug ID CSCug68407.
Cisco Virtualization Experience Client 6000 Series Firmware -
Cisco Virtualization Experience Client 6000 -
3.1
CVSSv3
CVE-2009-3552
In RHEV-M VDC 2.2.0, it was found that the SSL certificate was not verified when using the client-side Red Hat Enterprise Virtualization Manager interface (a Windows Presentation Foundation (WPF) XAML browser application) to connect to the Red Hat Enterprise Virtualization Manage...
Redhat Enterprise Virtualization Manager 2.2
7.5
CVSSv3
CVE-2017-7539
An assertion-failure flaw was found in Qemu prior to 2.10.1, in the Network Block Device (NBD) server's initial connection negotiation, where the I/O coroutine was undefined. This could crash the qemu-nbd server if a client sent unexpected data during connection negotiation....
Qemu Qemu
Redhat Openstack 7.0
Redhat Openstack 6.0
Redhat Virtualization 4.0
Redhat Openstack 10
Redhat Openstack 9
Redhat Openstack 8
Redhat Openstack 11
Redhat Virtualization 3.0
NA
CVE-2010-0435
The Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2, and KVM 83, when the Intel VT-x extension is enabled, allows guest OS users to cause a denial of service (NULL pointer dereference and host OS crash) via vectors related to instruction emulation...
Redhat Enterprise Virtualization 2.2
Redhat Kvm 83
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »