Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
privilege vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2020-25738
CyberArk Endpoint Privilege Manager (EPM) 11.1.0.173 allows malicious users to bypass a Credential Theft protection mechanism by injecting a DLL into a process that normally has credential access, such as a Chrome process that reads credentials from a SQLite database.
Cyberark Endpoint Privilege Manager 11.1.0.173
8.8
CVSSv3
CVE-2022-22375
IBM Security Verify Privilege On-Premises 11.5 could allow a remote authenticated malicious user to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 221681.
Ibm Security Verify Privilege On-premises
5.3
CVSSv3
CVE-2022-22377
IBM Security Verify Privilege On-Premises 11.5 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in t...
Ibm Security Verify Privilege On-premises
4.3
CVSSv3
CVE-2022-22380
IBM Security Verify Privilege On-Premises 11.5 could allow an malicious user to spoof a trusted entity due to improperly validating certificates. IBM X-Force ID: 221957.
Ibm Security Verify Privilege On-premises
4.3
CVSSv3
CVE-2022-22384
IBM Security Verify Privilege On-Premises 11.5 could allow an malicious user to modify messages returned from the server due to hazardous input validation. IBM X-Force ID: 221961.
Ibm Security Verify Privilege On-premises
7.5
CVSSv3
CVE-2022-22385
IBM Security Verify Privilege On-Premises 11.5 could disclose sensitive information to an attacked due to the transmission of data in clear text. IBM X-Force ID: 221962.
Ibm Security Verify Privilege On-premises
5.9
CVSSv3
CVE-2022-22386
IBM Security Verify Privilege On-Premises 11.5 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in ...
Ibm Security Verify Privilege On-premises
4.3
CVSSv3
CVE-2021-20581
IBM Security Verify Privilege On-Premises 11.5 could allow a user to obtain sensitive information due to insufficient session expiration. IBM X-Force ID: 199324.
Ibm Security Verify Privilege On-premises
5.3
CVSSv3
CVE-2022-43889
IBM Security Verify Privilege On-Premises 11.5 could disclose sensitive information through an HTTP request that could aid an attacker in further attacks against the system. IBM X-Force ID: 240452.
Ibm Security Verify Privilege On-premises
5.3
CVSSv3
CVE-2022-43891
IBM Security Verify Privilege On-Premises 11.5 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 240454.
Ibm Security Verify Privilege On-premises
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »