Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-27774
User input included in error response, which could be used in a phishing attack.
Hcltech Hcl Digital Experience 9.0
Hcltech Hcl Digital Experience 9.5
Hcltech Hcl Digital Experience 8.5
5
CVSSv2
CVE-2021-27777
XML External Entity (XXE) injection vulnerabilities occur when poorly configured XML parsers process user supplied input without sufficient validation. Attackers can exploit this vulnerability to manipulate XML content and inject malicious external entity references.
Hcltech Unica
6.5
CVSSv2
CVE-2015-7831
In Cloudera Hue, there is privilege escalation by a read-only user when CDH 5.x brefore 5.4.9 is used.
Cloudera Cdh
7.5
CVSSv2
CVE-2015-7834
Multiple unspecified vulnerabilities in Google V8 prior to 4.6.85.23, as used in Google Chrome prior to 46.0.2490.71, allow malicious users to cause a denial of service or possibly have other impact via unknown vectors.
Google V8
Google Chrome
3.5
CVSSv2
CVE-2021-27778
HCL Traveler is vulnerable to a cross-site scripting (XSS) caused by improper validation of the Name parameter for Approved Applications in the Traveler administration web pages. An attacker could exploit this vulnerability to execute a malicious script to access any cookies, ses...
Hcltech Traveler
3.3
CVSSv2
CVE-2015-7836
Siemens RUGGEDCOM ROS prior to 4.2.1 allows remote malicious users to obtain sensitive information by sniffing the network for VLAN data within the padding section of an Ethernet frame.
Siemens Ruggedcom Rugged Operating System
6.4
CVSSv2
CVE-2021-27779
VersionVault Express exposes sensitive information that an attacker can use to impersonate the server or eavesdrop on communications with the server.
Hcltech Versionvault Express 2.0.1
5
CVSSv2
CVE-2021-27780
The software may be vulnerable to both Un-Auth XML interaction and unauthenticated device enrollment.
Hcltech Modern Client Management
Hcltech Bigfix Mobile
7.5
CVSSv2
CVE-2015-7839
SolarWinds Log and Event Manager (LEM) allows remote malicious users to execute arbitrary commands on managed computers via a request to services/messagebroker/nonsecurestreamingamf involving the traceroute functionality.
Solarwinds Log And Event Manager
3.5
CVSSv2
CVE-2021-27781
The Master operator may be able to embed script tag in HTML with alert pop-up display cookie.
Hcltech Modern Client Management
Hcltech Bigfix Mobile
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »