Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloud vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2020-26809
SAP Commerce Cloud, versions- 1808,1811,1905,2005, allows an malicious user to bypass existing authentication and permission checks via the '/medias' endpoint hence gaining access to Secure Media folders. This folder could contain sensitive files that results in disclos...
Sap Commerce Cloud 1808
Sap Commerce Cloud 1811
Sap Commerce Cloud 1905
Sap Commerce Cloud 2005
3.3
CVSSv3
CVE-2016-0205
A vulnerability has been identified in IBM Cloud Orchestrator 2.3, 2.3.0.1, 2.4, and 2.4.0.1 that could allow an attacker after authentication to enumerate valid users of the system. IBM X-Force ID: 109394.
Ibm Cloud Orchestrator 2.4.0.0
Ibm Cloud Orchestrator 2.4.0.1
Ibm Cloud Orchestrator 2.3.0.1
Ibm Cloud Orchestrator 2.3.0.0
NA
CVE-2013-1139
The nsAPI interface in Cisco Cloud Portal 9.1 SP1 and SP2, and 9.3 up to and including 9.3.2, does not properly check privileges, which allows remote authenticated users to obtain sensitive information via a crafted URL, aka Bug ID CSCud81134.
Cisco Cloud Portal 9.1
Cisco Cloud Portal 9.3
Cisco Cloud Portal 9.3.2
Cisco Cloud Portal 9.3.1
5.4
CVSSv3
CVE-2020-6200
The SAP Commerce (SmartEdit Extension), versions- 6.6, 6.7, 1808, 1811, is vulnerable to client-side angularjs template injection, a variant of Cross-Site-Scripting (XSS) that exploits the templating facilities of the angular framework.
Sap Commerce Cloud 6.6
Sap Commerce Cloud 6.7
Sap Commerce Cloud 1808
Sap Commerce Cloud 1811
5.4
CVSSv3
CVE-2020-6272
SAP Commerce Cloud versions - 1808, 1811, 1905, 2005, does not sufficiently encode user inputs, which allows an authenticated and authorized content manager to inject malicious script into several web CMS components. These can be saved and later triggered, if an affected web page...
Sap Commerce Cloud 1808
Sap Commerce Cloud 1811
Sap Commerce Cloud 1905
Sap Commerce Cloud 2005
4.6
CVSSv3
CVE-2020-6363
SAP Commerce Cloud, versions - 1808, 1811, 1905, 2005, exposes several web applications that maintain sessions with a user. These sessions are established after the user has authenticated with username/passphrase credentials. The user can change their own passphrase, but this doe...
Sap Commerce Cloud 1808
Sap Commerce Cloud 1811
Sap Commerce Cloud 1905
Sap Commerce Cloud 2005
9.8
CVSSv3
CVE-2021-3033
An improper verification of cryptographic signature vulnerability exists in the Palo Alto Networks Prisma Cloud Compute console. This vulnerability enables an malicious user to bypass signature validation during SAML authentication by logging in to the Prisma Cloud Compute consol...
Paloaltonetworks Prisma Cloud 19.11
Paloaltonetworks Prisma Cloud 20.04
Paloaltonetworks Prisma Cloud 20.09
Paloaltonetworks Prisma Cloud 20.12
7.5
CVSSv3
CVE-2016-6639
Cloud Foundry PHP Buildpack (aka php-buildpack) prior to 4.3.18 and PHP Buildpack Cf-release prior to 242, as used in Pivotal Cloud Foundry (PCF) Elastic Runtime prior to 1.6.38 and 1.7.x prior to 1.7.19 and other products, place the .profile file in the htdocs directory, which m...
Cloudfoundry Php-buildpack
Pivotal Cloud Foundry Elastic Runtime 1.7.5
Pivotal Cloud Foundry Elastic Runtime 1.7.6
Pivotal Cloud Foundry Elastic Runtime 1.7.7
Pivotal Cloud Foundry Elastic Runtime 1.7.8
Pivotal Cloud Foundry Elastic Runtime 1.7.0
Pivotal Cloud Foundry Elastic Runtime 1.7.13
Pivotal Cloud Foundry Elastic Runtime 1.7.14
Pivotal Cloud Foundry Elastic Runtime 1.7.15
Pivotal Cloud Foundry Elastic Runtime 1.7.16
Pivotal Cloud Foundry Elastic Runtime 1.7.17
Pivotal Cloud Foundry Elastic Runtime 1.7.2
Pivotal Cloud Foundry Elastic Runtime 1.7.4
Pivotal Cloud Foundry Elastic Runtime 1.7.9
Pivotal Cloud Foundry Elastic Runtime 1.7.11
Pivotal Cloud Foundry Elastic Runtime 1.7.18
Pivotal Cloud Foundry Elastic Runtime 1.7.1
Pivotal Cloud Foundry Elastic Runtime 1.7.3
Pivotal Cloud Foundry Elastic Runtime 1.7.10
Pivotal Cloud Foundry Elastic Runtime 1.7.12
Pivotal Cloud Foundry Elastic Runtime
8.8
CVSSv3
CVE-2016-6651
The UAA /oauth/token endpoint in Pivotal Cloud Foundry (PCF) prior to 243; UAA 2.x prior to 2.7.4.8, 3.x prior to 3.3.0.6, and 3.4.x prior to 3.4.5; UAA BOSH prior to 11.7 and 12.x prior to 12.6; Elastic Runtime prior to 1.6.40, 1.7.x prior to 1.7.21, and 1.8.x prior to 1.8.2; an...
Pivotal Software Cloud Foundry Ops Manager 1.7.7
Pivotal Software Cloud Foundry Ops Manager 1.7.6
Pivotal Software Cloud Foundry Ops Manager 1.8.0
Pivotal Software Cloud Foundry Elastic Runtime 1.8.0
Pivotal Software Cloud Foundry Elastic Runtime 1.6.33
Pivotal Software Cloud Foundry Elastic Runtime 1.6.32
Pivotal Software Cloud Foundry Elastic Runtime 1.6.31
Pivotal Software Cloud Foundry Elastic Runtime 1.6.23
Pivotal Software Cloud Foundry Elastic Runtime 1.6.22
Pivotal Software Cloud Foundry Elastic Runtime 1.6.14
Pivotal Software Cloud Foundry Elastic Runtime 1.6.13
Pivotal Software Cloud Foundry Elastic Runtime 1.6.5
Pivotal Software Cloud Foundry Elastic Runtime 1.6.4
Pivotal Software Cloud Foundry Elastic Runtime 1.7.18
Pivotal Software Cloud Foundry Elastic Runtime 1.7.17
Pivotal Software Cloud Foundry Elastic Runtime 1.7.10
Pivotal Software Cloud Foundry Elastic Runtime 1.7.9
Pivotal Software Cloud Foundry Elastic Runtime 1.7.1
Pivotal Software Cloud Foundry Elastic Runtime 1.7.0
Pivotal Software Cloud Foundry Ops Manager 1.7.11
Pivotal Software Cloud Foundry Ops Manager 1.7.10
Pivotal Software Cloud Foundry Ops Manager 1.7.3
8.8
CVSSv3
CVE-2016-4468
SQL injection vulnerability in Pivotal Cloud Foundry (PCF) prior to 238; UAA 2.x prior to 2.7.4.4, 3.x prior to 3.3.0.2, and 3.4.x prior to 3.4.1; UAA BOSH prior to 11.2 and 12.x prior to 12.2; Elastic Runtime prior to 1.6.29 and 1.7.x prior to 1.7.7; and Ops Manager 1.7.x prior ...
Pivotal Software Cloud Foundry Elastic Runtime 1.6.5
Pivotal Software Cloud Foundry
Pivotal Software Cloud Foundry Elastic Runtime 1.8.0
Pivotal Software Cloud Foundry Uaa
Pivotal Software Cloud Foundry Elastic Runtime 1.6.13
Pivotal Software Cloud Foundry Elastic Runtime 1.7.6
Pivotal Software Cloud Foundry Elastic Runtime 1.6.7
Pivotal Software Cloud Foundry Elastic Runtime 1.6.6
Pivotal Software Cloud Foundry Elastic Runtime 1.7.1
Pivotal Software Cloud Foundry Ops Manager 1.7.3
Pivotal Software Cloud Foundry Ops Manager 1.7.4
Pivotal Software Cloud Foundry Elastic Runtime 1.6.9
Pivotal Software Cloud Foundry Elastic Runtime 1.6.22
Pivotal Software Cloud Foundry Elastic Runtime 1.6.14
Pivotal Software Cloud Foundry Elastic Runtime 1.6.25
Pivotal Software Cloud Foundry Elastic Runtime 1.6.17
Pivotal Software Cloud Foundry Elastic Runtime 1.7.4
Pivotal Software Cloud Foundry Elastic Runtime 1.6.10
Pivotal Software Cloud Foundry Elastic Runtime 1.6.0
Pivotal Software Cloud Foundry Elastic Runtime 1.7.7
Pivotal Software Cloud Foundry Elastic Runtime 1.6.20
Pivotal Software Cloud Foundry Elastic Runtime 1.6.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »