Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
network performance monitor vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2015-0639
The Common Flow Table (CFT) feature in Cisco IOS XE 3.6 and 3.7 prior to 3.7.1S, 3.8 prior to 3.8.0S, 3.9 prior to 3.9.0S, 3.10 prior to 3.10.0S, 3.11 prior to 3.11.0S, 3.12 prior to 3.12.0S, 3.13 prior to 3.13.0S, 3.14 prior to 3.14.0S, and 3.15 prior to 3.15.0S, when MMON or NB...
Cisco Ios Xe 3.7s.1
Cisco Ios Xe 3.7s.3
Cisco Ios Xe 3.6s.0
Cisco Ios Xe 3.6s.1
Cisco Ios Xe 3.6s.2
Cisco Ios Xe 3.7s
Cisco Ios Xe 3.7s.4
Cisco Ios Xe 3.7s.5
Cisco Ios Xe 3.6s
Cisco Ios Xe 3.7s.0
Cisco Ios Xe 3.7s.2
4.3
CVSSv2
CVE-2021-45105
Apache Log4j2 versions 2.0-alpha1 up to and including 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted strin...
Apache Log4j
Netapp Cloud Manager -
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Sonicwall Network Security Manager
Sonicwall Email Security
Sonicwall Web Application Firewall
Sonicwall 6bk1602-0aa12-0tp0 Firmware
Sonicwall 6bk1602-0aa22-0tp0 Firmware
Sonicwall 6bk1602-0aa32-0tp0 Firmware
Sonicwall 6bk1602-0aa42-0tp0 Firmware
Sonicwall 6bk1602-0aa52-0tp0 Firmware
Oracle E-business Suite 12.2
Oracle Retail Back Office 14.1
Oracle Weblogic Server 12.2.1.3.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Webcenter Sites 12.2.1.3.0
Oracle Managed File Transfer 12.2.1.3.0
Oracle Retail Order Broker 16.0
Oracle Retail Integration Bus 14.1.3
Oracle Retail Returns Management 14.1
Oracle Retail Central Office 14.1
74 Github repositories
5 Articles
5.8
CVSSv2
CVE-2019-3014
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Performance Monitor). Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromis...
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Peoplesoft Enterprise Peopletools 8.56
4.3
CVSSv2
CVE-2020-11022
In jQuery versions greater than or equal to 1.2 and prior to 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuer...
Jquery Jquery
Drupal Drupal
Debian Debian Linux 9.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Oracle Weblogic Server 12.1.3.0.0
Oracle Jdeveloper 11.1.1.9.0
Oracle Retail Back Office 14.1
Oracle Retail Back Office 14.0
Oracle Peoplesoft Enterprise Peopletools 8.56
Oracle Weblogic Server 10.3.6.0.0
Oracle Communications Webrtc Session Controller 7.2
Oracle Weblogic Server 12.2.1.3.0
Oracle Agile Product Lifecycle Management For Process 6.2.0.0
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Application Testing Suite 13.3.0.1
Oracle Retail Returns Management 14.0
Oracle Retail Returns Management 14.1
Oracle Jdeveloper 12.2.1.3.0
Oracle Policy Automation Connector For Siebel 10.4.6
Oracle Financial Services Market Risk Measurement And Management 8.0.6
12 Github repositories
7.8
CVSSv2
CVE-2015-0640
The high-speed logging (HSL) feature in Cisco IOS XE 2.x and 3.x prior to 3.10.4S, 3.11 prior to 3.11.3S, 3.12 prior to 3.12.1S, 3.13 prior to 3.13.0S, 3.14 prior to 3.14.0S, and 3.15 prior to 3.15.0S allows remote malicious users to cause a denial of service (device reload) via ...
Cisco Ios Xe 3.1s.1
Cisco Ios Xe 3.1s.3
Cisco Ios Xe 3.5s
Cisco Ios Xe 3.5s.0
Cisco Ios Xe 3.7s.0
Cisco Ios Xe 3.7s.2
Cisco Ios Xe 3.9s.1
Cisco Ios Xe 3.10s.0
Cisco Ios Xe 3.12s.0
Cisco Ios Xe 3.10s.3
Cisco Ios Xe 3.1s.5
Cisco Ios Xe 3.2s.3
Cisco Ios Xe 3.2s.1
Cisco Ios Xe 3.2s.2
Cisco Ios Xe 3.3s.1
Cisco Ios Xe 3.3s.2
Cisco Ios Xe 3.7s.3
Cisco Ios Xe 3.7s.4
Cisco Ios Xe 3.8s
Cisco Ios Xe 3.8s.0
Cisco Ios Xe 3.8s.1
Cisco Ios Xe 3.7s.6
7.8
CVSSv2
CVE-2015-0641
Cisco IOS XE 2.x and 3.x prior to 3.9.0S, 3.10 prior to 3.10.0S, 3.11 prior to 3.11.0S, 3.12 prior to 3.12.0S, 3.13 prior to 3.13.0S, 3.14 prior to 3.14.0S, and 3.15 prior to 3.15.0S allows remote malicious users to cause a denial of service (device reload) via crafted IPv6 packe...
Cisco Ios Xe 3.1s.1
Cisco Ios Xe 3.1s.3
Cisco Ios Xe 3.4s.1
Cisco Ios Xe 3.6s
Cisco Ios Xe 3.6s.0
Cisco Ios Xe 3.6s.2
Cisco Ios Xe 3.7s.3
Cisco Ios Xe 3.8s
Cisco Ios Xe 3.7s.6
Cisco Ios Xe 3.1s.5
Cisco Ios Xe 3.2s.1
Cisco Ios Xe 3.2s.2
Cisco Ios Xe 3.3s.1
Cisco Ios Xe 3.3s.2
Cisco Ios Xe 3.7s.0
Cisco Ios Xe 3.7s.1
Cisco Ios Xe 3.4s.5
Cisco Ios Xe 3.4s.6
Cisco Ios Xe 3.2s.3
Cisco Ios Xe 3.7s.7
Cisco Ios Xe 3.1s.0
Cisco Ios Xe 3.2s.0
7.8
CVSSv2
CVE-2015-0644
AppNav in Cisco IOS XE 3.8 up to and including 3.10 prior to 3.10.3S, 3.11 prior to 3.11.3S, 3.12 prior to 3.12.1S, 3.13 prior to 3.13.0S, 3.14 prior to 3.14.0S, and 3.15 prior to 3.15.0S allows remote malicious users to execute arbitrary code or cause a denial of service (device...
Cisco Ios Xe 3.9s.2
Cisco Ios Xe 3.11s.0
Cisco Ios Xe 3.9s.1
Cisco Ios Xe 3.9s.0
Cisco Ios Xe 3.10s.0
Cisco Ios Xe 3.10s.1
Cisco Ios Xe 3.10s.2
Cisco Ios Xe 3.8s Base
Cisco Ios Xe 3.8s.1
Cisco Ios Xe 3.10s.0a
Cisco Ios Xe 3.12s.0
Cisco Ios Xe 3.8s.0
Cisco Ios Xe 3.8s.2
Cisco Ios Xe 3.11s.1
Cisco Ios Xe 3.11s.2
7.8
CVSSv2
CVE-2015-0645
The Layer 4 Redirect (L4R) feature in Cisco IOS XE 2.x and 3.x prior to 3.10.4S, 3.11 prior to 3.11.3S, 3.12 prior to 3.12.2S, 3.13 prior to 3.13.1S, 3.14 prior to 3.14.0S, and 3.15 prior to 3.15.0S allows remote malicious users to cause a denial of service (device reload) via ma...
Cisco Ios Xe 3.1s.2
Cisco Ios Xe 3.1s.3
Cisco Ios Xe 3.2s.1
Cisco Ios Xe 3.2s.2
Cisco Ios Xe 3.6s.2
Cisco Ios Xe 3.4s.5
Cisco Ios Xe 3.4s.6
Cisco Ios Xe 3.10s.0
Cisco Ios Xe 3.2s.3
Cisco Ios Xe 3.1s.0
Cisco Ios Xe 3.4s.2
Cisco Ios Xe 3.4s.3
Cisco Ios Xe 3.4s.4
Cisco Ios Xe 3.5s.0
Cisco Ios Xe 3.12s.0
Cisco Ios Xe 3.11s.2
Cisco Ios Xe 3.13s.0
Cisco Ios Xe 3.10s.3
Cisco Ios Xe 3.3s.0
Cisco Ios Xe 3.1s.1
Cisco Ios Xe 3.3s.1
Cisco Ios Xe 3.4s.1
4.3
CVSSv2
CVE-2019-1559
If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 by...
Openssl Openssl
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 16.04
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Netapp Hyper Converged Infrastructure -
Netapp Cloud Backup -
Netapp Santricity Smi-s Provider -
Netapp Element Software -
Netapp Snapdrive -
Netapp Snapcenter -
Netapp Storage Automation Store -
Netapp Ontap Select Deploy -
Netapp Steelstore Cloud Integrated Storage -
Netapp Oncommand Unified Manager -
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Storagegrid
Netapp Oncommand Insight -
Netapp Ontap Select Deploy Administration Utility -
Netapp Service Processor -
3 Github repositories
4.3
CVSSv2
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
Redhat Hibernate Validator
Redhat Hibernate Validator 6.1.0
Redhat Single Sign-on -
Redhat Jboss Enterprise Application Platform -
Redhat Jboss Data Grid -
Redhat Openshift Application Runtimes -
Redhat Fuse 1.0
Redhat Jboss Enterprise Application Platform 7.2
Redhat Jboss Enterprise Application Platform 7.3
Netapp Active Iq Unified Manager -
Netapp Element -
Netapp Snapcenter Plug-in -
Netapp Management Services For Element Software And Netapp Hci -
Oracle Flexcube Investor Servicing 12.3.0
Oracle Flexcube Investor Servicing 12.1.0
Oracle Solaris 11
Oracle Flexcube Private Banking 12.1.0
Oracle Insurance Policy Administration J2ee 10.2.0
Oracle Flexcube Private Banking 12.0.0
Oracle Flexcube Investor Servicing 12.0.4
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Integration Bus 13.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »