Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security cloud vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2019-15686
Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component allowed an attacker remotely disable various anti-virus protection features. ...
Kaspersky Anti-virus
Kaspersky Internet Security
Kaspersky Security Cloud
Kaspersky Small Office Security
Kaspersky Total Security
9.8
CVSSv3
CVE-2023-50424
SAP BTP Security Services Integration Library ([Golang] github.com/sap/cloud-security-client-go) - versions < 0.17.0, allow under certain conditions an escalation of privileges. On successful exploitation, an unauthenticated attacker can obtain arbitrary permissions within the...
Sap Cloud-security-client-go
7.5
CVSSv3
CVE-2023-30993
IBM Cloud Pak for Security (CP4S) 1.9.0.0 up to and including 1.9.2.0 could allow an attacker with a valid API key for one tenant to access data from another tenant's account. IBM X-Force ID: 254136.
Ibm Cloud Pak For Security
5.5
CVSSv3
CVE-2021-27223
A denial-of-service issue existed in one of modules that was incorporated in Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security. A local user could cause Windows crash by running a specially crafted binary module. The fix was delivered automatically. Credits: ...
Kaspersky Anti-virus
Kaspersky Endpoint Security
Kaspersky Internet Security
Kaspersky Security Cloud
Kaspersky Small Office Security
Kaspersky Total Security
9.8
CVSSv3
CVE-2022-27534
Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security with antivirus databases released prior to 12 March 2022 had a bug in a data parsing module that potentially allowed an malicious user to execute arbitrary code. The fix was delivered automatically. Credits: G...
Kaspersky Anti-virus
Kaspersky Endpoint Security
Kaspersky Internet Security
Kaspersky Security Cloud
Kaspersky Small Office Security
Kaspersky Total Security
9.8
CVSSv3
CVE-2023-50422
SAP BTP Security Services Integration Library ([Java] cloud-security-services-integration-library) - versions below 2.17.0 and versions from 3.0.0 to prior to 3.3.0, allow under certain conditions an escalation of privileges. On successful exploitation, an unauthenticated attacke...
Sap Cloud-security-services-integration-library
1 Article
5.9
CVSSv3
CVE-2020-4816
IBM Cloud Pak for Security (CP4S) 1.4.0.0 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the mi...
Ibm Cloud Pak For Security 1.4.0.0
6.1
CVSSv3
CVE-2020-4820
IBM Cloud Pak for Security (CP4S) 1.4.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Cloud Pak For Security 1.4.0.0
6.5
CVSSv3
CVE-2019-10391
Jenkins IBM Application Security on Cloud Plugin 1.2.4 and previous versions transmitted configured passwords in plain text as part of job configuration forms, potentially resulting in their exposure.
Jenkins Ibm Application Security On Cloud
5.3
CVSSv3
CVE-2020-4815
IBM Cloud Pak for Security (CP4S) 1.4.0.0 could allow a remote user to obtain sensitive information from HTTP response headers that could be used in further attacks against the system.
Ibm Cloud Pak For Security 1.4.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »