Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
health vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2017-13982
A directory traversal vulnerability in HPE BSM Platform Application Performance Management System Health product versions 9.26, 9.30 and 9.40, allows users to upload unrestricted files.
Hp Bsm Platform Application Performance Management System Health 9.30
Hp Bsm Platform Application Performance Management System Health 9.40
Hp Bsm Platform Application Performance Management System Health 9.26
10
CVSSv2
CVE-2017-13983
An authentication vulnerability in HPE BSM Platform Application Performance Management System Health product versions 9.26, 9.30 and 9.40, allows remote users to bypass authentication.
Hp Bsm Platform Application Performance Management System Health 9.30
Hp Bsm Platform Application Performance Management System Health 9.40
Hp Bsm Platform Application Performance Management System Health 9.26
5.5
CVSSv2
CVE-2017-13984
An authentication vulnerability in HPE BSM Platform Application Performance Management System Health product versions 9.26, 9.30 and 9.40, allows remote users to delete arbitrary files via servlet directory traversal.
Hp Bsm Platform Application Performance Management System Health 9.30
Hp Bsm Platform Application Performance Management System Health 9.40
Hp Bsm Platform Application Performance Management System Health 9.26
4
CVSSv2
CVE-2017-13985
An authentication vulnerability in HPE BSM Platform Application Performance Management System Health product versions 9.26, 9.30 and 9.40, allows remote users to traverse directory leading to disclosure of information.
Hp Bsm Platform Application Performance Management System Health 9.30
Hp Bsm Platform Application Performance Management System Health 9.40
Hp Bsm Platform Application Performance Management System Health 9.26
4.3
CVSSv2
CVE-2015-4591
eClinicalWorks Population Health (CCMR) suffers from a cross site scripting vulnerability in login.jsp which allows remote unauthenticated users to inject arbitrary javascript via the strMessage parameter.
Eclinicalworks Population Health -
1 EDB exploit
NA
CVE-2024-1201
Search path or unquoted item vulnerability in HDD Health affecting versions 4.2.0.112 and previous versions. This vulnerability could allow a local malicious user to store a malicious executable file within the unquoted search path, resulting in privilege escalation.
Panterasoft Hdd Health
4.6
CVSSv2
CVE-2018-19001
Philips HealthSuite Health Android App, all versions. The software uses simple encryption that is not strong enough for the level of protection required.
Philips Healthsuite Health
6.5
CVSSv2
CVE-2015-4592
eClinicalWorks Population Health (CCMR) suffers from an SQL injection vulnerability in portalUserService.jsp which allows remote authenticated users to inject arbitrary malicious database commands as part of user input.
Eclinicalworks Population Health -
1 EDB exploit
6.8
CVSSv2
CVE-2015-4593
eClinicalWorks Population Health (CCMR) suffers from a cross-site request forgery (CSRF) vulnerability in portalUserService.jsp which allows remote malicious users to hijack the authentication of content administrators for requests that could lead to the creation, modification an...
Eclinicalworks Population Health -
1 EDB exploit
7.5
CVSSv2
CVE-2015-4594
eClinicalWorks Population Health (CCMR) suffers from a session fixation vulnerability. When authenticating a user, the application does not assign a new session ID, making it possible to use an existent session ID.
Eclinicalworks Population Health -
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »