Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knowledge management vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-1223
Unspecified vulnerability in Dokeos 1.8.4 before SP3 allows malicious users to execute arbitrary code via unspecified vectors.
Dokeos Open Source Learning And Knowledge Management Tool 1.8.4
6.5
CVSSv2
CVE-2017-16678
Server Side Request Forgery (SSRF) vulnerability in SAP NetWeaver Knowledge Management Configuration Service, EPBC and EPBC2 from 7.00 to 7.02; KMC-BC 7.30, 7.31, 7.40 and 7.50, that allows an malicious user to manipulate the vulnerable application to send crafted requests on beh...
Sap Netweaver Knowledge Management Configuration Service -
Sap Epbc2
Sap Epbc
Sap Kmc-bc 7.30
Sap Kmc-bc 7.31
Sap Kmc-bc 7.40
Sap Kmc-bc 7.50
4.3
CVSSv2
CVE-2013-3710
SUSE Lifecycle Management Server (SLMS) prior to 1.3.7 does not generate a new secret key when the service starts, which allows remote malicious users to defeat intended cryptographic protection mechanisms by leveraging knowledge of this key from a product installation elsewhere.
Novell Suse Lifecycle Management Server
Novell Suse Lifecycle Management Server 1.2
Novell Suse Lifecycle Management Server 1.1
Novell Suse Lifecycle Management Server 1.0
4.6
CVSSv2
CVE-2013-5008
The agent and task-agent components in Symantec Management Platform 7.0 and 7.1 prior to 7.1 SP2 Mp1.1v7 rollup, as used in certain Altiris products, use the same registry-entry encryption key across different customers' installations, which makes it easier for local users t...
Symantec Management Platform 7.1
Symantec Management Platform 7.0
7.8
CVSSv2
CVE-2013-3625
An unspecified DLL file in Baramundi Management Suite 7.5 up to and including 8.9 uses a hardcoded encryption key, which makes it easier for malicious users to defeat cryptographic protection mechanisms by leveraging knowledge of this key from a product installation elsewhere.
Baramundi Management Suite 8.3
Baramundi Management Suite 8.6
Baramundi Management Suite 8.7
Baramundi Management Suite 8.8
Baramundi Management Suite 7.6
Baramundi Management Suite 8.9
Baramundi Management Suite 8.0
Baramundi Management Suite 8.1
Baramundi Management Suite 7.5
Baramundi Management Suite 8.2
Baramundi Management Suite 8.5
4.3
CVSSv2
CVE-2017-10963
In Knox SDS IAM (Identity Access Management) and EMM (Enterprise Mobility Management) 16.11 on Samsung mobile devices, a man-in-the-middle attacker can install any application into the Knox container (without the user's knowledge) by inspecting network traffic from a Samsung...
Samsung Knox Enterprise Mobility Management 16.11
Samsung Knox Identity Access Management 16.11
6.5
CVSSv2
CVE-2021-22158
The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) is vulnerable to XML external entity (XXE) injection in the Web Console. The vulnerability requires admin user privileges and knowledge of the XML file's encryption key to successfully exploit. All v...
Proofpoint Insider Threat Management
6.4
CVSSv2
CVE-2017-11694
MEDHOST Document Management System contains hard-coded credentials that are used for Apache Solr access. An attacker with knowledge of the hard-coded credentials and the ability to communicate directly with Apache Solr may be able to obtain or modify sensitive patient and financi...
Medhost Medhost Document Management System -
6.4
CVSSv2
CVE-2017-11693
MEDHOST Document Management System contains hard-coded credentials that are used for customer database access. An attacker with knowledge of the hard-coded credentials and the ability to communicate directly with the database may be able to obtain or modify sensitive patient and ...
Medhost Medhost Document Management System -
10
CVSSv2
CVE-2016-4328
MEDHOST Perioperative Information Management System (aka PIMS or VPIMS) prior to 2015R1 has hardcoded credentials, which makes it easier for remote malicious users to obtain sensitive information via direct requests to the application database server.
Medhost Perioperative Information Management System -
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »