Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
glassfish vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2013-1515
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Sun Middleware Products 3.0.1 and 3.1.2 allows remote malicious users to affect integrity via vectors related to ADMIN Interface.
Oracle Sun Middleware Products 3.0.1
Oracle Sun Middleware Products 3.1.2
NA
CVE-2022-26119
A improper authentication vulnerability in Fortinet FortiSIEM prior to 6.5.0 allows a local attacker with CLI access to perform operations on the Glassfish server directly via a hardcoded password.
Fortinet Fortisiem 6.4.1
Fortinet Fortisiem 6.4.0
Fortinet Fortisiem
Fortinet Fortisiem 6.2.1
Fortinet Fortisiem 6.2.0
Fortinet Fortisiem 5.4.0
Fortinet Fortisiem 5.2.2
Fortinet Fortisiem 5.2.1
Fortinet Fortisiem 5.0.0
Fortinet Fortisiem 5.0.1
5
CVSSv2
CVE-2013-5816
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2 allows remote malicious users to affect availability via unknown vectors related to Metro.
Oracle Fusion Middleware 2.1.1
Oracle Fusion Middleware 3.1.2
Oracle Fusion Middleware 3.0.1
6.8
CVSSv2
CVE-2016-0441
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.1.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Embedded Server.
Oracle Fusion Middleware 3.1.2
7.5
CVSSv2
CVE-2015-0396
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.0.1 and 3.1.2 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors related to Admin Console.
Oracle Fusion Middleware 3.1.2
Oracle Fusion Middleware 3.0.1
4.6
CVSSv2
CVE-2020-10537
An issue exists in Epikur prior to 20.1.1. A Glassfish 4.1 server with a default configuration is running on TCP port 4848. No password is required to access it with the administrator account.
Epikur Epikur
10
CVSSv2
CVE-2014-2609
The Java Glassfish Admin Console in HP Executive Scorecard 9.40 and 9.41 does not require authentication, which allows remote malicious users to execute arbitrary code via a session on TCP port 10001, aka ZDI-CAN-2116.
Hp Executive Scorecard 9.40
Hp Executive Scorecard 9.41
3.5
CVSSv2
CVE-2011-1503
The XSL Content portlet in Liferay Portal Community Edition (CE) 5.x and 6.x prior to 6.0.6 GA, when Apache Tomcat or Oracle GlassFish is used, allows remote authenticated users to read arbitrary (1) XSL and (2) XML files via a file:/// URL.
Liferay Liferay Portal
2.6
CVSSv2
CVE-2015-4744
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2; and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0 allows remote malicious users to affect integrit...
Oracle Fusion Middleware 10.3.6
Oracle Fusion Middleware 12.1.1
Oracle Fusion Middleware 12.1.2.0.0
Oracle Fusion Middleware 12.1.3.0.0
Oracle Fusion Middleware 2.1.1
Oracle Fusion Middleware 3.1.2
Oracle Fusion Middleware 3.0.1
4.3
CVSSv2
CVE-2015-2623
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.0.1 and 3.1.2, and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0, allows remote malicious users to affect integrity via u...
Oracle Fusion Middleware 12.1.3.0.0
Oracle Fusion Middleware 3.1.2
Oracle Fusion Middleware 3.0.1
Oracle Fusion Middleware 10.3.6
Oracle Fusion Middleware 12.1.1
Oracle Fusion Middleware 12.1.2.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »