Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
viewpoint vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-32027
A flaw was found in postgresql in versions prior to 13.3, prior to 12.7, prior to 11.12, prior to 10.17 and prior to 9.6.22. While modifying certain SQL array values, missing bounds checks let authenticated database users write arbitrary bytes to a wide area of server memory. The...
Postgresql Postgresql
Redhat Enterprise Linux 7.0
Redhat Jboss Enterprise Application Platform 7.0.0
Redhat Enterprise Linux 8.0
Redhat Software Collections -
8.8
CVSSv3
CVE-2021-3191
Idelji Web ViewPoint Suite, as used in conjunction with HPE NonStop, allows Remote Unauthorized Access for T0320L01^ABY and T0320L01^ACD, T0952L01^AAR through T0952L01^AAX, and T0986L01^AAD through T0986L01^AAJ (L) and T0320H01^ABW through T0320H01^ACC, T0952H01^AAQ through T0952...
Hpe Web Viewpoint
Hpe Web Viewpoint 15.02.00
Hpe Web Viewpoint 15.02.01
Hpe Web Viewpoint T0320l01\\^aby
Hpe Web Viewpoint T0320l01\\^acd
8.8
CVSSv3
CVE-2020-25695
A flaw was found in PostgreSQL versions prior to 13.1, prior to 12.5, prior to 11.10, prior to 10.15, prior to 9.6.20 and prior to 9.5.24. An attacker having permission to create non-temporary objects in at least one schema can execute arbitrary SQL functions under the identity o...
Postgresql Postgresql
Debian Debian Linux 9.0
1 Github repository
8.8
CVSSv3
CVE-2018-10054
H2 1.4.197, as used in Datomic prior to 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designed to be run outside of a secure environment."
H2database H2 1.4.197
Cognitect Datomic
2 Github repositories
8.8
CVSSv3
CVE-2017-2722
DP300 V500R002C00,TE60 with software V100R001C01, V100R001C10, V100R003C00, V500R002C00 and V600R006C00,TP3106 with software V100R001C06 and V100R002C00,ViewPoint 9030 with software V100R011C02, V100R011C03,eCNS210_TD with software V100R004C10,eSpace 7950 with software V200R003C0...
Huawei Dp300 Firmware V500r002c00
Huawei Te60 Firmware V100r001c10
Huawei Te60 Firmware V500r002c00
Huawei Te60 Firmware V600r006c00
Huawei Te60 Firmware V100r001c01
Huawei Te60 Firmware V100r003c00
Huawei Tp3106 Firmware V100r001c06
Huawei Tp3106 Firmware V100r002c00
Huawei Viewpoint 9030 Firmware V100r011c02
Huawei Viewpoint 9030 Firmware V100r011c03
Huawei Ecns210 Td Firmware V100r004c10
Huawei Espace 7950 Firmware V200r003c00
Huawei Espace 7950 Firmware V200r003c30
Huawei Espace Iad Firmware V300r002c01spcb00
Huawei Espace Iad Firmware V300r001c07spca00
Huawei Espace U1981 Firmware V200r003c30
Huawei Espace U1981 Firmware V100r001c20
Huawei Espace U1981 Firmware V100r001c30
Huawei Espace U1981 Firmware V200r003c00
Huawei Espace U1981 Firmware V200r003c20
8.5
CVSSv3
CVE-2022-29170
Grafana is an open-source platform for monitoring and observability. In Grafana Enterprise, the Request security feature allows list allows to configure Grafana in a way so that the instance doesn’t call or only calls specific hosts. The vulnerability present starting with ...
Grafana Grafana
8.2
CVSSv3
CVE-2020-13379
The avatar feature in Grafana 3.0.1 up to and including 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain inf...
Grafana Grafana
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Netapp E-series Performance Analyzer -
Opensuse Leap 15.2
Opensuse Backports Sle 15.0
7 Github repositories
8.1
CVSSv3
CVE-2022-39306
Grafana is an open-source platform for monitoring and observability. Versions before 9.2.4, or 8.5.15 on the 8.X branch, are subject to Improper Input Validation. Grafana admins can invite other members to the organization they are an admin for. When admins add members to the org...
Grafana Grafana
8.1
CVSSv3
CVE-2021-23214
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encrypt...
Postgresql Postgresql
Postgresql Postgresql 14.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Redhat Software Collections 1.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux For Power Little Endian 8.0
Redhat Enterprise Linux For Ibm Z Systems 8.0
8.1
CVSSv3
CVE-2020-25694
A flaw was found in PostgreSQL versions prior to 13.1, prior to 12.5, prior to 11.10, prior to 10.15, prior to 9.6.20 and prior to 9.5.24. If a client application that creates additional database connections only reuses the basic connection parameters while dropping security-rele...
Postgresql Postgresql
Debian Debian Linux 9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »