Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
application security manager appliance vulnerabilities and exploits
(subscribe to this query)
6.3
CVSSv3
CVE-2019-15999
A vulnerability in the application environment of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote malicious user to gain unauthorized access to the JBoss Enterprise Application Platform (JBoss EAP) on an affected device. The vulnerability is due to a...
Cisco Data Center Network Manager
1 Article
7.5
CVSSv3
CVE-2022-0391
A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator (URL) strings into components. The issue involves how the urlparse method does not sanitize input and allows characters like '\r' and '\n'...
Python Python 3.10.0
Python Python
Netapp Ontap Select Deploy Administration Utility -
Netapp Hci -
Netapp Hci Compute Node -
Netapp Management Services For Element Software -
Netapp Solidfire, Enterprise Sds & Hci Storage Node -
Netapp Active Iq Unified Manager -
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Oracle Http Server 12.2.1.3.0
Oracle Http Server 12.2.1.4.0
Oracle Zfs Storage Appliance Kit 8.8
NA
CVE-2013-5512
Race condition in the HTTP Deep Packet Inspection (DPI) feature in Cisco Adaptive Security Appliance (ASA) Software 8.2.x prior to 8.2(5.46), 8.3.x prior to 8.3(2.39), 8.4.x prior to 8.4(5.5), 8.5.x prior to 8.5(1.18), 8.6.x prior to 8.6(1.12), 8.7.x prior to 8.7(1.4), 9.0.x prio...
Cisco Adaptive Security Appliance Software 8.3(2.34)
Cisco Adaptive Security Appliance Software 8.2(5.38)
Cisco Adaptive Security Appliance Software 8.2(3)
Cisco Adaptive Security Appliance Software 8.2(4)
Cisco Adaptive Security Appliance Software 8.2(3.9)
Cisco Adaptive Security Appliance Software 8.2(5)
Cisco Adaptive Security Appliance Software 8.2(2)
Cisco Adaptive Security Appliance Software 8.3(2)
Cisco Adaptive Security Appliance Software 8.2(4.4)
Cisco Adaptive Security Appliance Software 8.2(5.35)
Cisco Adaptive Security Appliance Software 8.2
Cisco Adaptive Security Appliance Software 8.2(1)
Cisco Adaptive Security Appliance Software 8.3(1)
Cisco Adaptive Security Appliance Software 8.3(2.37)
Cisco Adaptive Security Appliance Software 8.2(4.1)
Cisco Adaptive Security Appliance Software 8.4(1.11)
Cisco Adaptive Security Appliance Software 8.4(2)
Cisco Adaptive Security Appliance Software 8.4(4.11)
Cisco Adaptive Security Appliance Software 8.4(5)
Cisco Adaptive Security Appliance Software 8.4(2.11)
Cisco Adaptive Security Appliance Software 8.4(1)
Cisco Adaptive Security Appliance Software 8.4(3)
7.5
CVSSv3
CVE-2019-20907
In Lib/tarfile.py in Python up to and including 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because _proc_pax lacks header validation.
Python Python
Opensuse Leap 15.1
Opensuse Leap 15.2
Debian Debian Linux 9.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Netapp Active Iq Unified Manager
Netapp Cloud Volumes Ontap Mediator -
Oracle Zfs Storage Appliance Kit 8.8
2 Github repositories
9.8
CVSSv3
CVE-2021-3711
In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the "out" parameter can be NULL and, on exit, the "outlen" paramete...
Openssl Openssl
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Santricity Smi-s Provider -
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Clustered Data Ontap -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Manageability Software Development Kit -
Netapp Storage Encryption -
Netapp E-series Santricity Os Controller
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Jd Edwards World Security A9.4
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Enterprise Session Border Controller 8.4
Oracle Enterprise Communications Broker 3.2.0
Oracle Zfs Storage Appliance Kit 8.8
Oracle Peoplesoft Enterprise Peopletools 8.59
1 Github repository
1 Article
4.9
CVSSv3
CVE-2019-15983
A vulnerability in the SOAP API of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote malicious user to gain read access to information that is stored on an affected system. To exploit this vulnerability, an attacker would need administrative privileges...
Cisco Data Center Network Manager
1 Article
NA
CVE-2013-5513
Cisco Adaptive Security Appliance (ASA) Software 8.2.x prior to 8.2(5.46), 8.3.x prior to 8.3(2.39), 8.4.x prior to 8.4(7), 8.5.x prior to 8.5(1.18), 8.6.x prior to 8.6(1.12), 8.7.x prior to 8.7(1.7), 9.0.x prior to 9.0(3.3), and 9.1.x prior to 9.1(1.8), when the DNS ALPI engine ...
Cisco Adaptive Security Appliance Software 8.2(5.38)
Cisco Adaptive Security Appliance Software 8.2(3)
Cisco Adaptive Security Appliance Software 8.2(4)
Cisco Adaptive Security Appliance Software 8.2(3.9)
Cisco Adaptive Security Appliance Software 8.2(5)
Cisco Adaptive Security Appliance Software 8.2(2)
Cisco Adaptive Security Appliance Software 8.3(2)
Cisco Adaptive Security Appliance Software 8.2(4.4)
Cisco Adaptive Security Appliance Software 8.2(5.35)
Cisco Adaptive Security Appliance Software 8.2
Cisco Adaptive Security Appliance Software 8.2(1)
Cisco Adaptive Security Appliance Software 8.3(1)
Cisco Adaptive Security Appliance Software 8.2(4.1)
Cisco Adaptive Security Appliance Software 8.4(1.11)
Cisco Adaptive Security Appliance Software 8.4(2)
Cisco Adaptive Security Appliance Software 8.4(4.11)
Cisco Adaptive Security Appliance Software 8.4(5)
Cisco Adaptive Security Appliance Software 8.4(2.11)
Cisco Adaptive Security Appliance Software 8.4(1)
Cisco Adaptive Security Appliance Software 8.4(3)
Cisco Adaptive Security Appliance Software 8.4
Cisco Adaptive Security Appliance Software 8.6(1)
8.6
CVSSv3
CVE-2021-3517
There is a flaw in the xml entity encoding functionality of libxml2 in versions prior to 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most like...
Xmlsoft Libxml2
Redhat Jboss Core Services -
Redhat Enterprise Linux 8.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Ontap Select Deploy Administration Utility -
Netapp Clustered Data Ontap -
Netapp E-series Santricity Storage Manager -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Snapdrive -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Santricity Unified Manager -
Netapp Manageability Software Development Kit -
Netapp E-series Santricity Web Services -
Netapp E-series Santricity Os Controller
Netapp Hci H410c Firmware -
5.9
CVSSv3
CVE-2021-23336
The package python/cpython from 0 and prior to 3.6.13, from 3.7.0 and prior to 3.7.10, from 3.8.0 and prior to 3.8.8, from 3.9.0 and prior to 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaki...
Python Python
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Netapp Cloud Backup -
Netapp Snapcenter -
Netapp Ontap Select Deploy Administration Utility -
Netapp Inventory Collect Tool -
Djangoproject Django
Oracle Zfs Storage Appliance 8.8
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Communications Offline Mediation Controller 12.0.0.3.0
Oracle Communications Pricing Design Center 12.0.0.3.0
6.5
CVSSv3
CVE-2021-3541
A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service.
Xmlsoft Libxml2
Redhat Jboss Core Services -
Oracle Zfs Storage Appliance Kit 8.8
Netapp Cloud Backup -
Netapp Snapdrive -
Netapp Ontap Select Deploy Administration Utility -
Netapp Clustered Data Ontap -
Netapp Smi-s Provider -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Active Iq Unified Manager -
Netapp Manageability Software Development Kit -
Netapp H410c Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »