Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
messaging gateway vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-7001
The Multimedia Messaging Centre (MMSC) in NowSMS Now SMS & MMS Gateway prior to 2013.11.15 allows remote malicious users to cause a denial of service via a malformed MM1 message that is routed to a (1) MM4 or (2) MM7 connection.
Nowsms Now Sms \\& Mms Gateway
Nowsms Now Sms \\& Mms Gateway 2013.09.26
NA
CVE-2015-4555
Buffer overflow in the HTTP administrative interface in TIBCO Rendezvous prior to 8.4.4, Rendezvous Network Server prior to 1.1.1, Substation ES prior to 2.9.0, and Messaging Appliance prior to 8.7.2 allows remote malicious users to cause a denial of service or possibly execute a...
Tibco Rendezvous Network Server
Tibco Messaging Appliance
Tibco Rendezvous
Tibco Substation Es
9.8
CVSSv3
CVE-2019-12751
Symantec Messaging Gateway, before 10.7.1, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an applicat...
Symantec Message Gateway
NA
CVE-2013-7000
The Multimedia Messaging Centre (MMSC) in NowSMS Now SMS & MMS Gateway 2013.09.26 allows remote malicious users to cause a denial of service via a malformed message to a MM4 connection.
Nowsms Now Sms \\& Mms Gateway 2013.09.26
5.5
CVSSv3
CVE-2016-5309
The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows prior to 12.1.6 MP5; Symantec Endpoint Prot...
Broadcom Symantec Data Center Security Server -
Symantec Advanced Threat Protection -
Symantec Csapi
Symantec Email Security.cloud -
Symantec Endpoint Protection
Symantec Endpoint Protection Cloud -
Symantec Endpoint Protection For Small Business -
Symantec Endpoint Protection For Small Business
Symantec Mail Security For Domino
Symantec Mail Security For Domino 8.1.2
Symantec Mail Security For Domino 8.1.3
Symantec Mail Security For Microsoft Exchange
Symantec Mail Security For Microsoft Exchange 7.0
Symantec Mail Security For Microsoft Exchange 7.0.1
Symantec Mail Security For Microsoft Exchange 7.0.2
Symantec Mail Security For Microsoft Exchange 7.0.3
Symantec Mail Security For Microsoft Exchange 7.0.4
Symantec Mail Security For Microsoft Exchange 7.5
Symantec Mail Security For Microsoft Exchange 7.5.1
Symantec Mail Security For Microsoft Exchange 7.5.2
Symantec Mail Security For Microsoft Exchange 7.5.3
Symantec Mail Security For Microsoft Exchange 7.5.4
1 EDB exploit
5.5
CVSSv3
CVE-2016-5310
The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows prior to 12.1.6 MP5; Symantec Endpoint Prot...
Broadcom Symantec Data Center Security Server -
Symantec Advanced Threat Protection -
Symantec Csapi
Symantec Email Security.cloud -
Symantec Endpoint Protection
Symantec Endpoint Protection Cloud -
Symantec Endpoint Protection For Small Business -
Symantec Endpoint Protection For Small Business
Symantec Mail Security For Domino
Symantec Mail Security For Domino 8.1.2
Symantec Mail Security For Domino 8.1.3
Symantec Mail Security For Microsoft Exchange
Symantec Mail Security For Microsoft Exchange 7.0
Symantec Mail Security For Microsoft Exchange 7.0.1
Symantec Mail Security For Microsoft Exchange 7.0.2
Symantec Mail Security For Microsoft Exchange 7.0.3
Symantec Mail Security For Microsoft Exchange 7.0.4
Symantec Mail Security For Microsoft Exchange 7.5
Symantec Mail Security For Microsoft Exchange 7.5.1
Symantec Mail Security For Microsoft Exchange 7.5.2
Symantec Mail Security For Microsoft Exchange 7.5.3
Symantec Mail Security For Microsoft Exchange 7.5.4
1 EDB exploit
7.5
CVSSv3
CVE-2019-14439
A Polymorphic Typing issue exists in FasterXML jackson-databind 2.x prior to 2.9.9.2. This occurs when Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint and the service has the logback jar in the classpath.
Fasterxml Jackson-databind
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Apache Drill 1.16.0
Redhat Jboss Middleware Text-only Advisories 1.0
Oracle Retail Xstore Point Of Service 15.0
Oracle Banking Platform 2.4.0
Oracle Retail Xstore Point Of Service 7.1
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Banking Platform 2.4.1
Oracle Primavera Gateway 16.1
Oracle Primavera Gateway 16.2
Oracle Primavera Gateway 15.2
Oracle Banking Platform 2.5.0
Oracle Retail Xstore Point Of Service 16.0
Oracle Jd Edwards Enterpriseone Orchestrator 9.2
Oracle Banking Platform 2.6.0
Oracle Banking Platform 2.6.1
Oracle Retail Customer Management And Segmentation Foundation 17.0
2 Github repositories
9.8
CVSSv3
CVE-2019-14379
SubTypeValidator.java in FasterXML jackson-databind prior to 2.9.9.2 mishandles default typing when ehcache is used (because of net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup), leading to remote code execution.
Fasterxml Jackson-databind
Debian Debian Linux 8.0
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Service Level Manager -
Netapp Active Iq Unified Manager
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Redhat Jboss Enterprise Application Platform 7.2
Redhat Jboss Enterprise Application Platform 7.3
Redhat Openshift Container Platform 4.1
Redhat Single Sign-on 7.3
Redhat Openshift Container Platform 3.11
Oracle Retail Xstore Point Of Service 15.0
Oracle Primavera Unifier 16.2
Oracle Banking Platform 2.4.0
Oracle Retail Xstore Point Of Service 7.1
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Banking Platform 2.4.1
Oracle Primavera Gateway 16.2
Oracle Primavera Gateway 15.2
1 Github repository
8.1
CVSSv3
CVE-2020-36189
FasterXML jackson-databind 2.x prior to 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource.
Fasterxml Jackson-databind
Netapp Cloud Backup -
Netapp Service Level Manager -
Debian Debian Linux 9.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Application Testing Suite 13.3.0.1
Oracle Banking Platform 2.6.2
Oracle Primavera Unifier 18.8
Oracle Primavera Unifier
Oracle Agile Plm 9.3.6
Oracle Primavera Unifier 19.12
Oracle Webcenter Portal 12.2.1.4.0
Oracle Communications Billing And Revenue Management 12.0.0.3.0
Oracle Communications Billing And Revenue Management 7.5.0.23.0
Oracle Communications Services Gatekeeper 7.0
Oracle Retail Merchandising System 15.0.3
Oracle Banking Platform 2.7.0
Oracle Banking Platform 2.7.1
Oracle Banking Platform 2.9.0
Oracle Communications Evolved Communications Application Server 7.1
Oracle Goldengate Application Adapters 19.1.0.0.0
Oracle Retail Service Backbone 16.0.3
7.5
CVSSv3
CVE-2020-25649
A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly. This flaw allows vulnerability to XML external entity (XXE) attacks. The highest threat from this vulnerability is data integrity.
Fasterxml Jackson-databind
Netapp Oncommand Workflow Automation -
Netapp Service Level Manager -
Netapp Oncommand Api Services -
Fedoraproject Fedora 32
Quarkus Quarkus
Apache Iotdb
Oracle Webcenter Portal 12.2.1.3.0
Oracle Banking Platform 2.6.2
Oracle Utilities Framework 4.3.0.5.0
Oracle Utilities Framework 4.3.0.6.0
Oracle Utilities Framework 4.4.0.0.0
Oracle Agile Plm 9.3.6
Oracle Coherence 12.2.1.4.0
Oracle Webcenter Portal 12.2.1.4.0
Oracle Sd-wan Edge 9.0
Oracle Coherence 14.1.1.0.0
Oracle Utilities Framework 4.4.0.2.0
Oracle Communications Billing And Revenue Management 12.0.0.3.0
Oracle Communications Billing And Revenue Management 7.5.0.23.0
Oracle Communications Services Gatekeeper 7.0
Oracle Banking Platform 2.7.0
1 Github repository
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »