Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
diagnostics vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-22547
Simple Diagnostics Agent - versions 1.0 (up to version 1.57.), allows an malicious user to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security exploits.
Sap Simple Diagnostics Agent
9.8
CVSSv3
CVE-2023-27497
Due to missing authentication and input sanitization of code the EventLogServiceCollector of SAP Diagnostics Agent - version 720, allows an malicious user to execute malicious scripts on all connected Diagnostics Agents running on Windows. On successful exploitation, the attacker...
Sap Diagnostics Agent 720
7.8
CVSSv3
CVE-2016-3231
The Standard Collector service in Windows Diagnostics Hub mishandles library loading, which allows local users to gain privileges via a crafted application, aka "Windows Diagnostics Hub Elevation of Privilege Vulnerability."
Microsoft Windows Diagnostics Hub -
NA
CVE-2013-3573
HP Insight Diagnostics 9.4.0.4710 allows remote malicious users to conduct unspecified injection attacks via unknown vectors.
Hp Insight Diagnostics 9.4.0.4710
NA
CVE-2013-3574
Absolute path traversal vulnerability in hpdiags/frontend2/commands/saveCompareConfig.php in HP Insight Diagnostics 9.4.0.4710 allows remote malicious users to write data to arbitrary files via a full pathname in the argument to the devicePath (aka mount) parameter.
Hp Insight Diagnostics 9.4.0.4710
1 EDB exploit
NA
CVE-2013-3575
hpdiags/frontend2/help/pageview.php in HP Insight Diagnostics 9.4.0.4710 does not properly restrict PHP include or require statements, which allows remote malicious users to include arbitrary hpdiags/frontend2/help/ .html files via the path parameter.
Hp Insight Diagnostics 9.4.0.4710
1 EDB exploit
4.4
CVSSv3
CVE-2022-3698
A denial of service vulnerability was reported in the Lenovo HardwareScanPlugin versions prior to 1.3.1.2 and Lenovo Diagnostics versions before 4.45 that could allow a local user with administrative access to trigger a system crash.
Lenovo Diagnostics
Lenovo Hardwarescan Plugin
7.8
CVSSv3
CVE-2022-3699
A privilege escalation vulnerability was reported in the Lenovo HardwareScanPlugin prior to version 1.3.1.2 and Lenovo Diagnostics prior to version 4.45 that could allow a local user to execute code with elevated privileges.
Lenovo Diagnostics
Lenovo Hardwarescan Addin
Lenovo Hardwarescan Plugin
5 Github repositories
4.4
CVSSv3
CVE-2022-0353
A denial of service vulnerability was reported in the Lenovo HardwareScanPlugin versions prior to 1.3.1.2 and Lenovo Diagnostics versions before 4.45 that could allow a local user with administrative access to trigger a system crash.
Lenovo Diagnostics
Lenovo Hardwarescan Addin
Lenovo Hardwarescan Plugin
NA
CVE-2006-1035
Unspecified vulnerability in the Oracle Diagnostics module 2.2 and previous versions allows remote malicious users to access diagnostics tests via unknown attack vectors.
Oracle E-business Suite 11.5.10.1
Oracle E-business Suite 11.5.5
Oracle E-business Suite 11.5.4
Oracle Diagnostics 2.2
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.10.2
Oracle E-business Suite 11.5.10
Oracle Diagnostics 2.1
Oracle E-business Suite 11.5.8
Oracle E-business Suite 11.5.9
Oracle E-business Suite 11.5.6
Oracle E-business Suite 11.5.3
Oracle Diagnostics 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »