Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote console vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-33732
Cross Site Scripting (XSS) in the New Policy form in Microworld Technologies eScan management console 14.0.1400.2281 allows a remote malicious user to inject arbitrary code via the vulnerable parameters type, txtPolicyType, and Deletefileval.
Escanav Escan Management Console 14.0.1400.2281
2 Github repositories
NA
CVE-2007-6406
Multiple cross-site scripting (XSS) vulnerabilities in CA (formerly Computer Associates) eTrust Threat Management Console allow remote malicious users to inject arbitrary web script or HTML via the IP Address field and other unspecified fields.
Broadcom Etrust Threat Management Console
9
CVSSv3
CVE-2023-31703
Cross Site Scripting (XSS) in the edit user form in Microworld Technologies eScan management console 14.0.1400.2281 allows remote malicious user to inject arbitrary code via the from parameter.
Escanav Escan Management Console 14.0.1400.2281
1 Github repository
NA
CVE-2011-1101
Multiple unspecified vulnerabilities in a third-party component of the Citrix Licensing Administration Console 11.6, formerly License Management Console, allow remote malicious users to (1) access unauthorized "license administration functionality" or (2) cause a denial...
Citrix Licensing Administration Console 11.6
NA
CVE-2014-9000
Mule Enterprise Management Console (MMC) does not properly restrict access to handler/securityService.rpc, which allows remote authenticated users to gain administrator privileges and execute arbitrary code via a crafted request that adds a new user. NOTE: this issue was original...
Mulesoft Mule Enterprise Management Console -
1 EDB exploit
9.8
CVSSv3
CVE-2016-4322
BMC BladeLogic Server Automation (BSA) prior to 8.7 Patch 3 allows remote malicious users to bypass authentication and consequently read arbitrary files or possibly have unspecified other impact by leveraging a "logic flaw" in the authentication process.
Bmc Bladelogic Server Automation Console 8.7.00
9.8
CVSSv3
CVE-2016-5711
NetApp Virtual Storage Console for VMware vSphere prior to 6.2.1 uses a non-unique certificate, which allows remote malicious users to conduct man-in-the-middle attacks via unspecified vectors.
Netapp Virtual Storage Console For Vmware Vsphere
NA
CVE-2007-2343
Stack-based buffer overflow in the TFTPD component in Enterasys NetSight Console 2.1 and NetSight Inventory Manager 2.1, and possibly earlier, allows remote malicious users to execute arbitrary code via crafted request packets that contain long file names.
Enterasys Netsight Console
Enterasys Netsight Inventory Manager
NA
CVE-2000-0668
pam_console PAM module in Linux systems allows a user to access the system console and reboot the system when a display manager such as gdm or kdm has XDMCP enabled.
Conectiva Linux 4.0
Conectiva Linux 4.0es
Michael K. Johnson Pam Console 0.66
Michael K. Johnson Pam Console 0.72 Unpatched
Conectiva Linux 4.1
Conectiva Linux 4.2
Conectiva Linux 5.0
Conectiva Linux 5.1
Redhat Linux 6.0
Redhat Linux 6.2
Redhat Linux 6.1
1 EDB exploit
NA
CVE-2007-2344
The BOOTPD component in Enterasys NetSight Console 2.1 and NetSight Inventory Manager 2.1, and possibly earlier, on Windows allows remote malicious users to cause a denial of service (daemon crash) via a UDP packet that contains an invalid "packet type" field.
Enterasys Netsight Inventory Manager 2.1
Enterasys Netsight Console 2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »