Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infrastructure vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2016-1442
The administrative web interface in Cisco Prime Infrastructure (PI) prior to 3.1.1 allows remote authenticated users to execute arbitrary commands via crafted field values, aka Bug ID CSCuy96280.
Cisco Prime Infrastructure 3.1
Cisco Prime Infrastructure 3.0
6.1
CVSSv3
CVE-2017-3848
A vulnerability in the HTTP web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web interface of the affected system. More Information: CSCuw63001 C...
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 3.0
7.5
CVSSv3
CVE-2016-9165
The get_sessions servlet in CA Unified Infrastructure Management (formerly CA Nimsoft Monitor) prior to 8.5 and CA Unified Infrastructure Management Snap (formerly CA Nimsoft Monitor Snap) allows remote malicious users to obtain active session ids and consequently bypass authenti...
Ca Unified Infrastructure Management Snap
Ca Unified Infrastructure Management
1 Article
9.8
CVSSv3
CVE-2020-8010
CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains an improper ACL handling vulnerability in the robot (controller) component. A remote attacker can execute commands, read from, or write to the target system.
Broadcom Unified Infrastructure Management
Broadcom Unified Infrastructure Management 20.1
1 Github repository
9.8
CVSSv3
CVE-2020-8012
CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a buffer overflow vulnerability in the robot (controller) component. A remote attacker can execute arbitrary code.
Broadcom Unified Infrastructure Management
Broadcom Unified Infrastructure Management 20.1
1 EDB exploit
1 Github repository
7.5
CVSSv3
CVE-2020-8011
CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains a null pointer dereference vulnerability in the robot (controller) component. A remote attacker can crash the Controller service.
Broadcom Unified Infrastructure Management
Broadcom Unified Infrastructure Management 20.1
1 Github repository
5.3
CVSSv3
CVE-2015-2894
Format string vulnerability in the up.time client in Idera Uptime Infrastructure Monitor 6.0 and 7.2 allows remote malicious users to cause a denial of service (application crash) via format string specifiers.
Idera Uptime Infrastructure Monitor 7.2
Idera Uptime Infrastructure Monitor 6.0
1 Article
NA
CVE-2014-8007
Cisco Prime Infrastructure allows remote authenticated users to read device-discovery passwords by examining the HTML source code of the Quick Discovery options page, aka Bug ID CSCum00019.
Cisco Prime Infrastructure -
7.5
CVSSv3
CVE-2015-8268
The up.time agent in Idera Uptime Infrastructure Monitor 7.5 and 7.6 on Linux allows remote malicious users to read arbitrary files via unspecified vectors.
Idera Uptime Infrastructure Monitor 7.6
Idera Uptime Infrastructure Monitor 7.5
9.8
CVSSv3
CVE-2015-9263
An issue exists in post2file.php in Up.Time Monitoring Station 7.5.0 (build 16) and 7.4.0 (build 13). It allows an malicious user to upload an arbitrary file, such as a .php file that can execute arbitrary OS commands.
Idera Uptime Infrastructure Monitor 7.5.0
Idera Uptime Infrastructure Monitor 7.4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »