Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
privileged user manager vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-22689
CA Harvest Software Change Manager versions 13.0.3, 13.0.4, 14.0.0, and 14.0.1, contain a vulnerability in the CSV export functionality, due to insufficient input validation, that can allow a privileged user to potentially execute arbitrary code or commands.
Broadcom Ca Harvest Software Change Manager 13.0.3
Broadcom Ca Harvest Software Change Manager 13.0.4
Broadcom Ca Harvest Software Change Manager 14.0.0
Broadcom Ca Harvest Software Change Manager 14.0.1
4.4
CVSSv3
CVE-2020-3301
Multiple vulnerabilities in Cisco Firepower Management Center (FMC) Software and Cisco Firepower User Agent Software could allow an malicious user to access a sensitive part of an affected system with a high-privileged account. For more information about these vulnerabilities, se...
Cisco Firepower Management Center 2.0.3
Cisco Firepower Management Center 2.1.0
Cisco Firepower Management Center 2.1.1
Cisco Firepower Management Center 2.2.0
Cisco Firepower Management Center 2.3.0
Cisco Firepower Management Center 5.0.0
Cisco Firepower Management Center 6.0.0
Cisco Firepower Management Center 6.1.0
Cisco Firepower Management Center 6.2.0
Cisco Firepower Management Center 6.2.3
Cisco Firepower Management Center 6.3.0
Cisco Firepower Management Center 6.4.0
Cisco Firepower Management Center 6.5.0
9.8
CVSSv3
CVE-2020-3318
Multiple vulnerabilities in Cisco Firepower Management Center (FMC) Software and Cisco Firepower User Agent Software could allow an malicious user to access a sensitive part of an affected system with a high-privileged account. For more information about these vulnerabilities, se...
Cisco Firepower Management Center 2.0.3
Cisco Firepower Management Center 2.1.0
Cisco Firepower Management Center 2.1.1
Cisco Firepower Management Center 2.2.0
Cisco Firepower Management Center 2.3.0
Cisco Firepower Management Center 5.0.0
Cisco Firepower Management Center 6.0.0
Cisco Firepower Management Center 6.1.0
Cisco Firepower Management Center 6.2.0
Cisco Firepower Management Center 6.2.3
Cisco Firepower Management Center 6.3.0
Cisco Firepower Management Center 6.4.0
Cisco Firepower Management Center 6.5.0
6.8
CVSSv3
CVE-2020-5916
In BIG-IP versions 15.1.0-15.1.0.4 and 15.0.0-15.0.1.3 the Certificate Administrator user role and higher privileged roles can perform arbitrary file reads outside of the web root directory.
F5 Big-ip Access Policy Manager
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Analytics
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Security Manager
F5 Big-ip Ddos Hybrid Defender
F5 Big-ip Domain Name System
F5 Big-ip Fraud Protection Service
F5 Big-ip Global Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Local Traffic Manager
F5 Big-ip Policy Enforcement Manager
F5 Ssl Orchestrator
7.8
CVSSv3
CVE-2021-35052
A component in Kaspersky Password Manager could allow an malicious user to elevate a process Integrity level from Medium to High.
Kaspersky Password Manager
Kaspersky Password Manager 9.0.2
1 Article
7.8
CVSSv3
CVE-2023-2291
Static credentials exist in the PostgreSQL data used in ManageEngine Access Manager Plus (AMP) build 4309, ManageEngine Password Manager Pro, and ManageEngine PAM360. These credentials could allow a malicious actor to modify configuration data that would escalate their permission...
Zohocorp Manageengine Pam360
Zohocorp Manageengine Access Manager Plus 4.3
Zohocorp Manageengine Password Manager Pro
7.8
CVSSv3
CVE-2022-35415
An improper input validation in NI System Configuration Manager prior to 22.5 may allow a privileged user to potentially enable escalation of privilege via local access.
Ni Configuration Manager
7.8
CVSSv3
CVE-2017-15518
All versions of OnCommand API Services before 2.1 and NetApp Service Level Manager before 1.0RC4 log a privileged database user account password. All users are urged to move to a fixed version. Since the affected password is changed during every upgrade/installation no further ac...
Netapp Oncommand Api Services
Netapp Service Level Manager 1.0
Netapp Service Level Manager
6.7
CVSSv3
CVE-2019-0107
Insufficient user prompt in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to potentially enable escalation of privilege via local access.
Intel Data Center Manager
7.8
CVSSv3
CVE-2023-32450
Dell Power Manager, Versions 3.3 to 3.14 contains an Improper Access Control vulnerability. A low-privileged malicious user may potentially exploit this vulnerability to perform arbitrary code execution with limited access.
Dell Power Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »