Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infrastructure vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-9165
The get_sessions servlet in CA Unified Infrastructure Management (formerly CA Nimsoft Monitor) prior to 8.5 and CA Unified Infrastructure Management Snap (formerly CA Nimsoft Monitor Snap) allows remote malicious users to obtain active session ids and consequently bypass authenti...
Ca Unified Infrastructure Management Snap
Ca Unified Infrastructure Management
1 Article
7.5
CVSSv3
CVE-2018-20733
BI Web Services in SAS Web Infrastructure Platform prior to 9.4M6 allows XXE.
Sas Web Infrastructure Platform
Sas Web Infrastructure Platform 9.4
9.8
CVSSv3
CVE-2015-9263
An issue exists in post2file.php in Up.Time Monitoring Station 7.5.0 (build 16) and 7.4.0 (build 13). It allows an malicious user to upload an arbitrary file, such as a .php file that can execute arbitrary OS commands.
Idera Uptime Infrastructure Monitor 7.4.0
Idera Uptime Infrastructure Monitor 7.5.0
7.5
CVSSv3
CVE-2015-8268
The up.time agent in Idera Uptime Infrastructure Monitor 7.5 and 7.6 on Linux allows remote malicious users to read arbitrary files via unspecified vectors.
Idera Uptime Infrastructure Monitor 7.6
Idera Uptime Infrastructure Monitor 7.5
5.3
CVSSv3
CVE-2015-2894
Format string vulnerability in the up.time client in Idera Uptime Infrastructure Monitor 6.0 and 7.2 allows remote malicious users to cause a denial of service (application crash) via format string specifiers.
Idera Uptime Infrastructure Monitor 7.2
Idera Uptime Infrastructure Monitor 6.0
1 Article
NA
CVE-2014-8007
Cisco Prime Infrastructure allows remote authenticated users to read device-discovery passwords by examining the HTML source code of the Quick Discovery options page, aka Bug ID CSCum00019.
Cisco Prime Infrastructure -
NA
CVE-2015-6332
Cisco Prime Infrastructure 2.2 allows remote malicious users to cause a denial of service (daemon hang) by sending many SSL renegotiation requests, aka Bug ID CSCuv56830.
Cisco Prime Infrastructure 2.2
8.8
CVSSv3
CVE-2016-1359
Cisco Prime Infrastructure 3.0 allows remote authenticated users to execute arbitrary code via a crafted HTTP request that is mishandled during viewing of a log file, aka Bug ID CSCuw81494.
Cisco Prime Infrastructure 3.0
6.1
CVSSv3
CVE-2015-6434
Cisco Prime Infrastructure does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)" issue, aka Bug...
Cisco Prime Infrastructure 2.2(2)
4.3
CVSSv3
CVE-2016-1474
Cisco Prime Infrastructure 2.2(2) does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)" issue, ...
Cisco Prime Infrastructure 2.2(2)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »