Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
control center vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-43089
Dell Rugged Control Center, version before 4.7, contains insufficient protection for the Policy folder. A local malicious standard user could potentially exploit this vulnerability to modify the content of the policy file, leading to unauthorized access to resources.
Dell Rugged Control Center
4.6
CVSSv2
CVE-2019-14599
Unquoted service path in Control Center-I version 2.1.0.0 and previous versions may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Control Center-i
7.8
CVSSv2
CVE-2015-2860
Directory traversal vulnerability in Avigilon Control Center (ACC) 4 prior to 4.12.0.54 and 5 prior to 5.4.2.22 allows remote malicious users to read arbitrary files via a crafted help/ URL.
Avigilon Avigilon Control Center
7.5
CVSSv2
CVE-2019-18342
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The SFTP service (default port 22/tcp) of the Control Center Server (CCS) does not properly limit its capabilities to the specified purpose. In conjunction with CVE-2019-18341, an unaut...
Siemens Control Center Server
3.5
CVSSv2
CVE-2021-20528
IBM Control Center 6.2.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 1987...
Ibm Control Center 6.2.0.0
NA
CVE-2022-34443
Dell Rugged Control Center, versions before 4.5, contain an Improper Input Validation in the Service EndPoint. A Local Low Privilege attacker could potentially exploit this vulnerability, leading to an Escalation of privileges.
Dell Rugged Control Center
4
CVSSv2
CVE-2022-26669
ASUS Control Center is vulnerable to SQL injection. An authenticated remote attacker with general user privilege can inject SQL command to specific API parameters to acquire database schema or access data.
Asus Control Center 1.4.2.5
4
CVSSv2
CVE-2019-15662
An issue exists in Rivet Killer Control Center prior to 2.1.1352. IOCTL 0x120444 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an arbitrary read primitive that can be used as part of a chain to escalate privileges.
Killernetworking Killer Control Center
4
CVSSv2
CVE-2019-15663
An issue exists in Rivet Killer Control Center prior to 2.1.1352. IOCTL 0x120404 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an out-of-bounds read that can be used as part of a chain to escalate privileges (issue 1 of ...
Killernetworking Killer Control Center
6.4
CVSSv2
CVE-2022-26668
ASUS Control Center API has a broken access control vulnerability. An unauthenticated remote attacker can call privileged API functions to perform partial system operations or cause partial disrupt of service.
Asus Control Center 1.4.2.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »