Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
controller vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2019-4176
IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 could allow a remote malicious user to bypass security restrictions, caused by an error related to insecure HTTP Methods. An attacker could exploit this vulnerability to gain access to the system. IBM X-Force ID: 15...
Ibm Cognos Controller 10.2.1
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.2.0
3.3
CVSSv3
CVE-2019-4177
IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 158882.
Ibm Cognos Controller 10.2.1
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.2.0
5.4
CVSSv3
CVE-2019-4136
IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...
Ibm Cognos Controller 10.2.1
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.2.0
6.5
CVSSv3
CVE-2019-4173
IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 could allow a remote malicious user to obtain sensitive information, caused by a flaw in the HTTP OPTIONS method, aka Optionsbleed. By sending an OPTIONS HTTP request, a remote attacker could exploit this vulnerabil...
Ibm Cognos Controller 10.2.1
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.2.0
7.2
CVSSv3
CVE-2020-4685
A low level user of IBM Cognos Controller 10.3.0, 10.3.1, 10.4.0, 10.4.1, and 10.4.2 who has Administration rights to the server where the application is installed, can escalate their privilege from Low level to Super Admin and gain access to Create/Update/Delete any level of use...
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.4.1
Ibm Cognos Controller 10.4.2
NA
CVE-2014-4811
IBM Storwize 3500, 3700, 5000, and 7000 devices and SAN Volume Controller 6.x and 7.x prior to 7.2.0.8 allow remote malicious users to reset the administrator superuser password to its default value via a direct request to the administrative IP address.
Ibm San Volume Controller Software 6.1.0.5
Ibm San Volume Controller Software 6.1.0.6
Ibm San Volume Controller Software 6.2.0.3
Ibm San Volume Controller Software 6.1.0.10
Ibm San Volume Controller Software 6.1.0.2
Ibm San Volume Controller Software 6.1.0.9
Ibm San Volume Controller Software 6.2.0.0
Ibm San Volume Controller Software 6.3.0.1
Ibm San Volume Controller Software 6.3.0.2
Ibm San Volume Controller Software 6.4.0.1
Ibm San Volume Controller Software 6.4.0.2
Ibm San Volume Controller Software 6.4.1.5
Ibm San Volume Controller Software 6.4.1.6
Ibm San Volume Controller Software 7.1.0.6
Ibm San Volume Controller Software 7.1.0.7
Ibm San Volume Controller Software 7.2.0.6
Ibm San Volume Controller Software 7.2.0.7
Ibm San Volume Controller Software 6.1.0.3
Ibm San Volume Controller Software 6.1.0.4
Ibm San Volume Controller Software 6.2.0.1
Ibm San Volume Controller Software 6.2.0.2
Ibm San Volume Controller Software 6.3.0.3
NA
CVE-2008-5563
Aruba Mobility Controller 2.4.8.x-FIPS, 2.5.x, 3.1.x, 3.2.x, 3.3.1.x, and 3.3.2.x allows remote malicious users to cause a denial of service (device crash) via a malformed Extensible Authentication Protocol (EAP) frame.
Aruba Networks Aruba Mobility Controller 2.5.4.18
Aruba Networks Aruba Mobility Controller 2.5.6
Arubanetworks Aruba Mobility Controller 3.1.1.0
Aruba Networks Aruba Mobility Controller 2.5.5.7
Aruba Networks Aruba Mobility Controller 2.5.4.25
Aruba Networks Aruba Mobility Controller 2.4.8.6
Aruba Networks Aruba Mobility Controller 2.4.8.5
Arubanetworks Aruba Mobility Controller 3.3.1.6
Arubanetworks Aruba Mobility Controller 3.3.1.0
Aruba Networks Aruba Mobility Controller 2.4.8.11
Aruba Networks Aruba Mobility Controller 3.1.1
Aruba Networks Aruba Mobility Controllers 3.1.1.3
Aruba Networks Aruba Mobility Controller 2.5.2.11
Aruba Networks Aruba Mobility Controller 2.4.8
Aruba Networks Aruba Mobility Controller 2.5.5
Aruba Networks Aruba Mobility Controller 2.5.4.17
Arubanetworks Aruba Mobility Controller 3.2.0.0
Arubanetworks Aruba Mobility Controller 3.1.1.3
8.8
CVSSv3
CVE-2014-2225
Multiple cross-site request forgery (CSRF) vulnerabilities in Ubiquiti Networks UniFi Controller prior to 3.2.1 allow remote malicious users to hijack the authentication of administrators for requests that (1) create a new admin user via a request to api/add/admin; (2) have unspe...
Ui Airvision Controller
Ui Mfi Controller
Ui Unifi Controller
1 EDB exploit
NA
CVE-2012-4690
Rockwell Automation Allen-Bradley MicroLogix controller 1100, 1200, 1400, and 1500; SLC 500 controller platform; and PLC-5 controller platform, when Static status is not enabled, allow remote malicious users to cause a denial of service via messages that trigger modification of s...
Rockwellautomation Ab Micrologix Controller 1200
Rockwellautomation Ab Micrologix Controller 1500
Rockwellautomation Plc-5 Controller -
Rockwellautomation Slc 500 Controller -
Rockwellautomation Ab Micrologix Controller 1400
Rockwellautomation Ab Micrologix Controller 1100
3.7
CVSSv3
CVE-2019-4171
IBM Cognos Controller 10.3.0, 10.3.1, 10.4.0, and 10.4.1 does not set the secure attribute on authorization tokens or session cookies. This could allow an malicious user to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 158876.
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »