Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
on-premise vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2020-10569
SysAid On-Premise 20.1.11, by default, allows the AJP protocol port, which is vulnerable to a GhostCat attack. Additionally, it allows unauthenticated access to upload files, which can be used to execute commands on the system by chaining it with a GhostCat attack. NOTE: This may...
Sysaid On-premise 20.1.11
3.5
CVSSv2
CVE-2017-4978
EMC RSA Adaptive Authentication (On-Premise) versions before 7.3 P2 (exclusive) contains a fix for a cross-site scripting vulnerability that could potentially be exploited by malicious users to compromise the affected system.
Rsa Adaptive Authentication \\(on Premise\\)
5
CVSSv2
CVE-2017-14935
Pulse Secure Pulse One On-Premise 2.0.1649 and below does not properly validate requests, which allows remote users to query and obtain sensitive information.
Pulsesecure Pulse One On-premise 2.0.1649
3.5
CVSSv2
CVE-2016-0925
Cross-site scripting (XSS) vulnerability in the Case Management application in EMC RSA Adaptive Authentication (On-Premise) prior to 6.0.2.1.SP3.P4 HF210, 7.0.x and 7.1.x prior to 7.1.0.0.SP0.P6 HF50, and 7.2.x prior to 7.2.0.0.SP0.P0 HF20 allows remote authenticated users to inj...
Emc Rsa Adaptive Authentication On-premise
NA
CVE-2022-28758
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions.
Zoom Zoom On-premise Meeting Connector Mmr
NA
CVE-2022-28759
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions.
Zoom Zoom On-premise Meeting Connector Mmr
NA
CVE-2022-28761
Zoom On-Premise Meeting Connector MMR before version 4.8.20220916.131 contains an improper access control vulnerability. As a result, a malicious actor in a meeting or webinar they are authorized to join could prevent participants from receiving audio and video causing meeting di...
Zoom Zoom On-premise Meeting Connector Mmr
5
CVSSv2
CVE-2022-25151
Within the Service Desk module of the ITarian platform (SAAS and on-premise), a remote attacker can obtain sensitive information, caused by the failure to set the HTTP Only flag. A remote attacker could exploit this vulnerability to gain access to the management interface by usin...
Itarian Saas Service Desk
Itarian On-premise
9
CVSSv2
CVE-2022-25152
The ITarian platform (SAAS / on-premise) offers the possibility to run code on agents via a function called procedures. It is possible to require a mandatory approval process. Due to a vulnerability in the approval process, present in any version before 6.35.37347.20040, a malici...
Itarian Saas Service Desk
Itarian On-premise
6.8
CVSSv2
CVE-2011-2742
EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1, and SP3 does not properly perform forensic evaluation upon receipt of device tokens from mobile apps, which might allow remote malicious users to bypass intended application rest...
Emc Rsa Adaptive Authentication On-premise 6.0.2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »