Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
operations agent vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2016-9594
curl before version 7.52.1 is vulnerable to an uninitialized random in libcurl's internal function that returns a good 32bit random value. Having a weak or virtually non-existent random value makes the operations that use it vulnerable.
Haxx Curl
8.1
CVSSv3
CVE-2017-10815
MaLion for Windows 5.2.1 and previous versions (only when "Remote Control" is installed) and MaLion for Mac 4.0.1 to 5.2.1 (only when "Remote Control" is installed) allow remote malicious users to bypass authentication to execute arbitrary commands or operatio...
Intercom Malion
7.8
CVSSv3
CVE-2022-29149
Azure Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability
Microsoft Azure Automation State Configuration -
Microsoft Azure Automation Update Management -
Microsoft Container Monitoring Solution -
Microsoft Log Analytics Agent -
Microsoft System Center Operations Manager 2016
Microsoft System Center Operations Manager 2019
Microsoft System Center Operations Manager 2022
Microsoft Azure Security Center
Microsoft Azure Sentinel
Microsoft Azure Stack Hub
Microsoft Azure Diagnostics
Microsoft Open Management Infrastructure
7.8
CVSSv3
CVE-2021-38645
Open Management Infrastructure Elevation of Privilege Vulnerability
Microsoft System Center Operations Manager -
Microsoft Azure Automation State Configuration -
Microsoft Azure Automation Update Management -
Microsoft Azure Diagnostics \\(lad\\) -
Microsoft Azure Open Management Infrastructure -
Microsoft Azure Security Center -
Microsoft Azure Sentinel -
Microsoft Azure Stack Hub -
Microsoft Container Monitoring Solution -
Microsoft Log Analytics Agent -
3 Github repositories
7.8
CVSSv3
CVE-2021-38648
Open Management Infrastructure Elevation of Privilege Vulnerability
Microsoft System Center Operations Manager -
Microsoft Azure Automation State Configuration -
Microsoft Azure Automation Update Management -
Microsoft Azure Diagnostics \\(lad\\) -
Microsoft Azure Open Management Infrastructure -
Microsoft Azure Security Center -
Microsoft Azure Sentinel -
Microsoft Azure Stack Hub -
Microsoft Container Monitoring Solution -
Microsoft Log Analytics Agent -
2 Github repositories
7.8
CVSSv3
CVE-2020-28010
Exim 4 prior to 4.94.2 allows Out-of-bounds Write because the main function, while setuid root, copies the current working directory pathname into a buffer that is too small (on some common platforms).
Exim Exim
7.8
CVSSv3
CVE-2020-28011
Exim 4 prior to 4.94.2 allows Heap-based Buffer Overflow in queue_run via two sender options: -R and -S. This may cause privilege escalation from exim to root.
Exim Exim
7.8
CVSSv3
CVE-2020-28012
Exim 4 prior to 4.94.2 allows Exposure of File Descriptor to Unintended Control Sphere because rda_interpret uses a privileged pipe that lacks a close-on-exec flag.
Exim Exim
7.8
CVSSv3
CVE-2020-28013
Exim 4 prior to 4.94.2 allows Heap-based Buffer Overflow because it mishandles "-F '.('" on the command line, and thus may allow privilege escalation from any user to root. This occurs because of the interpretation of negative sizes in strncpy.
Exim Exim
7.8
CVSSv3
CVE-2020-28007
Exim 4 prior to 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory (owned by a non-root user), a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem.
Exim Exim
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »