Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote console vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2018-3699
Cross-site scripting in the Intel RAID Web Console v3 for Windows may allow an unauthenticated user to elevate privilege via remote access.
Intel Raid Web Console 3
3.5
CVSSv2
CVE-2019-5403
A remote multiple cross-site scripting vulnerability exists in HPE 3PAR StoreServ Management and Core Software Media version(s): before 3.5.0.1.
Hp 3par Storeserv Management Console
9
CVSSv2
CVE-2021-41315
The Device42 Remote Collector prior to 17.05.01 does not sanitize user input in its SNMP Connectivity utility. This allows an authenticated attacker (with access to the console application) to execute arbitrary OS commands and escalate privileges.
Device42 Remote Collector
NA
CVE-2023-34837
A Cross Site Scripting vulnerability in Microworld Technologies eScan Management console v.14.0.1400.2281 allows a remote malicious user to execute arbitrary code via a vulnerable parameter GrpPath.
Escanav Escan Management Console 14.0.1400.2281
1 Github repository
NA
CVE-2023-34835
A Cross Site Scripting vulnerability in Microworld Technologies eScan Management console v.14.0.1400.2281 allows a remote malicious user to execute arbitrary JavaScript code via a vulnerable delete_file parameter.
Escanav Escan Management Console 14.0.1400.2281
1 Github repository
7.8
CVSSv2
CVE-2008-0495
Unspecified vulnerability in the Pegasus CIM Server in IBM Hardware Management Console (HMC) 7 R3.2.0 allows remote malicious users to cause a denial of service via unspecified vectors.
Ibm Hardware Management Console 7.3.2.0
NA
CVE-2023-33731
Reflected Cross Site Scripting (XSS) in the view dashboard detail feature in Microworld Technologies eScan management console 14.0.1400.2281 allows remote malicious user to inject arbitrary code via the URL directly.
Escanav Escan Management Console 14.0.1400.2281
1 Github repository
NA
CVE-2023-34838
A Cross Site Scripting vulnerability in Microworld Technologies eScan Management console v.14.0.1400.2281 allows a remote malicious user to execute arbitrary code via a crafted script to the Description parameter.
Escanav Escan Management Console 14.0.1400.2281
1 Github repository
NA
CVE-2023-33730
Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote malicious user to retrieve password of any admin or normal user in plain text format.
Escanav Escan Management Console 14.0.1400.2281
1 Github repository
NA
CVE-2023-34836
A Cross Site Scripting vulnerability in Microworld Technologies eScan Management console v.14.0.1400.2281 allows a remote malicious user to execute arbitrary code via a crafted script to the Dtltyp and ListName parameters.
Escanav Escan Management Console 14.0.1400.2281
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »