Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security cloud vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv2
CVE-2020-3132
A vulnerability in the email message scanning feature of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote malicious user to cause a temporary denial of service (DoS) condition on an affected device. The vulnerability is due to...
Cisco Cloud Email Security
Cisco Email Security Appliance
NA
CVE-2023-22067
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: CORBA). Supported versions that are affected are Oracle Java SE: 8u381, 8u381-perf; Oracle GraalVM Enterprise Edition: 20.3.11 and 21.3.7. Easily exploitable vulnerability...
Oracle Jdk 1.8.0
Oracle Jre 1.8.0
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
5
CVSSv2
CVE-2021-22119
Spring Security versions 5.5.x before 5.5.1, 5.4.x before 5.4.7, 5.3.x before 5.3.10 and 5.2.x before 5.2.11 are susceptible to a Denial-of-Service (DoS) attack via the initiation of the Authorization Request in an OAuth 2.0 Client Web and WebFlux application. A malicious user or...
Vmware Spring Security
Oracle Communications Cloud Native Core Policy 1.14.0
NA
CVE-2022-1700
Improper Restriction of XML External Entity Reference ('XXE') vulnerability in the Policy Engine of Forcepoint Data Loss Prevention (DLP), which is also leveraged by Forcepoint One Endpoint (F1E), Web Security Content Gateway, Email Security with DLP enabled, and Cloud ...
Forcepoint Cloud Security Gateway
Forcepoint Email Security
Forcepoint One Endpoint With Policy Engine
Forcepoint Data Loss Prevention
Forcepoint Web Security Content Gateway
4.6
CVSSv2
CVE-2019-14598
Improper Authentication in subsystem in Intel(R) CSME versions 12.0 up to and including 12.0.48 (IOT only: 12.0.56), versions 13.0 up to and including 13.0.20, versions 14.0 up to and including 14.0.10 may allow a privileged user to potentially enable escalation of privilege, den...
Intel Converged Security Management Engine Firmware
Netapp Steelstore Cloud Integrated Storage -
1 Article
4
CVSSv2
CVE-2020-3154
A vulnerability in the web UI of Cisco Cloud Web Security (CWS) could allow an authenticated, remote malicious user to execute arbitrary SQL queries. The vulnerability exists because the web-based management interface improperly validates SQL values. An authenticated attacker cou...
Cisco Cloud Web Security 5.2\\(0\\)
1 Article
4.3
CVSSv2
CVE-2021-44747
A Denial-of-Service (DoS) vulnerability exists in F-Secure Linux Security whereby the Fmlib component used in certain F-Secure products can crash while scanning fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Servic...
F-secure Security Cloud
F-secure Internet Gatekeeper
F-secure Atlant
F-secure Linux Security
F-secure Elements Endpoint Protection
6.8
CVSSv2
CVE-2018-18369
Norton Security (Windows client) before 22.16.3 and SEP SBE (Windows client) prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 & SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call...
Symantec Norton Security
Symantec Endpoint Protection Cloud Agent
Symantec Endpoint Protection Sep-12.1.7484.7002
Symantec Endpoint Protection Nis-22.15.2.22
Symantec Endpoint Protection Cloud
4.3
CVSSv2
CVE-2015-4637
The REST API in F5 BIG-IQ Cloud, Device, and Security 4.4.0 and 4.5.0 before HF2 and ADC 4.5.0 before HF2, when configured for LDAP remote authentication and the LDAP server allows anonymous BIND operations, allows remote malicious users to obtain an authentication token for arbi...
F5 Big-iq Cloud 4.5.0
F5 Big-iq Device 4.4.0
F5 Big-iq Device 4.5.0
F5 Big-iq Security 4.4.0
F5 Big-iq Cloud 4.4.0
F5 Big-iq Security 4.5.0
F5 Big-iq Adc 4.5.0
5
CVSSv2
CVE-2021-40837
A vulnerability affecting F-Secure antivirus engine before Capricorn update 2022-02-01_01 exists whereby decompression of ACE file causes the scanner service to stop. The vulnerability can be exploited remotely by an attacker. A successful attack will result in denial-of-service ...
F-secure Atlant
F-secure Internet Gatekeeper
F-secure Linux Security
F-secure Security Cloud
F-secure Elements Endpoint Detection And Response
F-secure Elements Endpoint Protection
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »