Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
privileged user manager vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2022-22689
CA Harvest Software Change Manager versions 13.0.3, 13.0.4, 14.0.0, and 14.0.1, contain a vulnerability in the CSV export functionality, due to insufficient input validation, that can allow a privileged user to potentially execute arbitrary code or commands.
Broadcom Ca Harvest Software Change Manager 13.0.3
Broadcom Ca Harvest Software Change Manager 13.0.4
Broadcom Ca Harvest Software Change Manager 14.0.0
Broadcom Ca Harvest Software Change Manager 14.0.1
7.5
CVSSv2
CVE-2020-3318
Multiple vulnerabilities in Cisco Firepower Management Center (FMC) Software and Cisco Firepower User Agent Software could allow an malicious user to access a sensitive part of an affected system with a high-privileged account. For more information about these vulnerabilities, se...
Cisco Firepower Management Center 2.0.3
Cisco Firepower Management Center 2.1.0
Cisco Firepower Management Center 2.1.1
Cisco Firepower Management Center 2.2.0
Cisco Firepower Management Center 2.3.0
Cisco Firepower Management Center 5.0.0
Cisco Firepower Management Center 6.0.0
Cisco Firepower Management Center 6.1.0
Cisco Firepower Management Center 6.2.0
Cisco Firepower Management Center 6.2.3
Cisco Firepower Management Center 6.3.0
Cisco Firepower Management Center 6.4.0
Cisco Firepower Management Center 6.5.0
2.1
CVSSv2
CVE-2020-3301
Multiple vulnerabilities in Cisco Firepower Management Center (FMC) Software and Cisco Firepower User Agent Software could allow an malicious user to access a sensitive part of an affected system with a high-privileged account. For more information about these vulnerabilities, se...
Cisco Firepower Management Center 2.0.3
Cisco Firepower Management Center 2.1.0
Cisco Firepower Management Center 2.1.1
Cisco Firepower Management Center 2.2.0
Cisco Firepower Management Center 2.3.0
Cisco Firepower Management Center 5.0.0
Cisco Firepower Management Center 6.0.0
Cisco Firepower Management Center 6.1.0
Cisco Firepower Management Center 6.2.0
Cisco Firepower Management Center 6.2.3
Cisco Firepower Management Center 6.3.0
Cisco Firepower Management Center 6.4.0
Cisco Firepower Management Center 6.5.0
4
CVSSv2
CVE-2020-5916
In BIG-IP versions 15.1.0-15.1.0.4 and 15.0.0-15.0.1.3 the Certificate Administrator user role and higher privileged roles can perform arbitrary file reads outside of the web root directory.
F5 Big-ip Access Policy Manager
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Analytics
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Security Manager
F5 Big-ip Ddos Hybrid Defender
F5 Big-ip Domain Name System
F5 Big-ip Fraud Protection Service
F5 Big-ip Global Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Local Traffic Manager
F5 Big-ip Policy Enforcement Manager
F5 Ssl Orchestrator
4.6
CVSSv2
CVE-2021-35052
A component in Kaspersky Password Manager could allow an malicious user to elevate a process Integrity level from Medium to High.
Kaspersky Password Manager
Kaspersky Password Manager 9.0.2
1 Article
NA
CVE-2022-35415
An improper input validation in NI System Configuration Manager prior to 22.5 may allow a privileged user to potentially enable escalation of privilege via local access.
Ni Configuration Manager
NA
CVE-2023-2291
Static credentials exist in the PostgreSQL data used in ManageEngine Access Manager Plus (AMP) build 4309, ManageEngine Password Manager Pro, and ManageEngine PAM360. These credentials could allow a malicious actor to modify configuration data that would escalate their permission...
Zohocorp Manageengine Pam360
Zohocorp Manageengine Access Manager Plus 4.3
Zohocorp Manageengine Password Manager Pro
4.6
CVSSv2
CVE-2019-0107
Insufficient user prompt in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to potentially enable escalation of privilege via local access.
Intel Data Center Manager
2.1
CVSSv2
CVE-2017-15518
All versions of OnCommand API Services before 2.1 and NetApp Service Level Manager before 1.0RC4 log a privileged database user account password. All users are urged to move to a fixed version. Since the affected password is changed during every upgrade/installation no further ac...
Netapp Oncommand Api Services
Netapp Service Level Manager 1.0
Netapp Service Level Manager
NA
CVE-2023-32450
Dell Power Manager, Versions 3.3 to 3.14 contains an Improper Access Control vulnerability. A low-privileged malicious user may potentially exploit this vulnerability to perform arbitrary code execution with limited access.
Dell Power Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »