Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
controller vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2019-4173
IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 could allow a remote malicious user to obtain sensitive information, caused by a flaw in the HTTP OPTIONS method, aka Optionsbleed. By sending an OPTIONS HTTP request, a remote attacker could exploit this vulnerabil...
Ibm Cognos Controller 10.2.1
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.2.0
2.1
CVSSv2
CVE-2019-4174
IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 158879.
Ibm Cognos Controller 10.2.1
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.2.0
2.1
CVSSv2
CVE-2019-4177
IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 158882.
Ibm Cognos Controller 10.2.1
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.2.0
5
CVSSv2
CVE-2019-4176
IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 could allow a remote malicious user to bypass security restrictions, caused by an error related to insecure HTTP Methods. An attacker could exploit this vulnerability to gain access to the system. IBM X-Force ID: 15...
Ibm Cognos Controller 10.2.1
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.2.0
6.5
CVSSv2
CVE-2020-4685
A low level user of IBM Cognos Controller 10.3.0, 10.3.1, 10.4.0, 10.4.1, and 10.4.2 who has Administration rights to the server where the application is installed, can escalate their privilege from Low level to Super Admin and gain access to Create/Update/Delete any level of use...
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.4.1
Ibm Cognos Controller 10.4.2
7.5
CVSSv2
CVE-2014-4811
IBM Storwize 3500, 3700, 5000, and 7000 devices and SAN Volume Controller 6.x and 7.x prior to 7.2.0.8 allow remote malicious users to reset the administrator superuser password to its default value via a direct request to the administrative IP address.
Ibm San Volume Controller Software 6.1.0.5
Ibm San Volume Controller Software 6.1.0.6
Ibm San Volume Controller Software 6.2.0.3
Ibm San Volume Controller Software 6.1.0.10
Ibm San Volume Controller Software 6.1.0.2
Ibm San Volume Controller Software 6.1.0.9
Ibm San Volume Controller Software 6.2.0.0
Ibm San Volume Controller Software 6.3.0.1
Ibm San Volume Controller Software 6.3.0.2
Ibm San Volume Controller Software 6.4.0.1
Ibm San Volume Controller Software 6.4.0.2
Ibm San Volume Controller Software 6.4.1.5
Ibm San Volume Controller Software 6.4.1.6
Ibm San Volume Controller Software 7.1.0.6
Ibm San Volume Controller Software 7.1.0.7
Ibm San Volume Controller Software 7.2.0.6
Ibm San Volume Controller Software 7.2.0.7
Ibm San Volume Controller Software 6.1.0.3
Ibm San Volume Controller Software 6.1.0.4
Ibm San Volume Controller Software 6.2.0.1
Ibm San Volume Controller Software 6.2.0.2
Ibm San Volume Controller Software 6.3.0.3
6.8
CVSSv2
CVE-2014-2225
Multiple cross-site request forgery (CSRF) vulnerabilities in Ubiquiti Networks UniFi Controller prior to 3.2.1 allow remote malicious users to hijack the authentication of administrators for requests that (1) create a new admin user via a request to api/add/admin; (2) have unspe...
Ui Airvision Controller
Ui Mfi Controller
Ui Unifi Controller
1 EDB exploit
7.8
CVSSv2
CVE-2008-5563
Aruba Mobility Controller 2.4.8.x-FIPS, 2.5.x, 3.1.x, 3.2.x, 3.3.1.x, and 3.3.2.x allows remote malicious users to cause a denial of service (device crash) via a malformed Extensible Authentication Protocol (EAP) frame.
Aruba Networks Aruba Mobility Controller 2.5.4.18
Aruba Networks Aruba Mobility Controller 2.5.6
Arubanetworks Aruba Mobility Controller 3.1.1.0
Aruba Networks Aruba Mobility Controller 2.5.5.7
Aruba Networks Aruba Mobility Controller 2.5.4.25
Aruba Networks Aruba Mobility Controller 2.4.8.6
Aruba Networks Aruba Mobility Controller 2.4.8.5
Arubanetworks Aruba Mobility Controller 3.3.1.6
Arubanetworks Aruba Mobility Controller 3.3.1.0
Aruba Networks Aruba Mobility Controller 2.4.8.11
Aruba Networks Aruba Mobility Controller 3.1.1
Aruba Networks Aruba Mobility Controllers 3.1.1.3
Aruba Networks Aruba Mobility Controller 2.5.2.11
Aruba Networks Aruba Mobility Controller 2.4.8
Aruba Networks Aruba Mobility Controller 2.5.5
Aruba Networks Aruba Mobility Controller 2.5.4.17
Arubanetworks Aruba Mobility Controller 3.2.0.0
Arubanetworks Aruba Mobility Controller 3.1.1.3
7.1
CVSSv2
CVE-2012-4690
Rockwell Automation Allen-Bradley MicroLogix controller 1100, 1200, 1400, and 1500; SLC 500 controller platform; and PLC-5 controller platform, when Static status is not enabled, allow remote malicious users to cause a denial of service via messages that trigger modification of s...
Rockwellautomation Ab Micrologix Controller 1200
Rockwellautomation Ab Micrologix Controller 1500
Rockwellautomation Plc-5 Controller -
Rockwellautomation Slc 500 Controller -
Rockwellautomation Ab Micrologix Controller 1400
Rockwellautomation Ab Micrologix Controller 1100
5
CVSSv2
CVE-2019-4412
IBM Cognos Controller stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 162659.
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.4.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »