Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infrastructure vulnerabilities and exploits
(subscribe to this query)
5
CVSSv3
CVE-2023-39903
An issue exists in Fujitsu Software Infrastructure Manager (ISM) prior to 2.8.0.061. The ismsnap component (in this specific case at /var/log/fujitsu/ServerViewSuite/ism/FirmwareManagement/FirmwareManagement.log) allows insecure collection and storage of authorization credentials...
Fujitsu Software Infrastructure Manager
5.3
CVSSv3
CVE-2015-2896
The up.time client in Idera Uptime Infrastructure Monitor up to and including 7.6 allows remote malicious users to obtain potentially sensitive version, OS, process, and event-log information via a command.
Idera Uptime Infrastructure Monitor
1 Article
9.8
CVSSv3
CVE-2020-7199
A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. The vulnerability could be remotely exploited to bypass remote authentication leading to execution of arbitrary commands, gainin...
Hp Edgeline Infrastructure Manager
NA
CVE-2013-6820
Unrestricted file upload vulnerability in the SAP NetWeaver Development Infrastructure (NWDI) allows remote malicious users to execute arbitrary code by uploading a file with an executable extension via unspecified vectors.
Sap Netweaver Development Infrastructure -
8.2
CVSSv3
CVE-2023-23693
Dell VxRail, versions before 7.0.450, contains an OS command injection Vulnerability in DCManager command-line utility. A local high privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's unde...
Dell Vxrail Hyperconverged Infrastructure
7.8
CVSSv3
CVE-2023-23694
Dell VxRail versions earlier than 7.0.450, contain(s) an OS command injection vulnerability in VxRail Manager. A local authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, ...
Dell Vxrail Hyperconverged Infrastructure
7.8
CVSSv3
CVE-2021-1421
A vulnerability in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local malicious user to perform a command injection attack on an affected device. The vulnerability is due to insufficient validation of user-supplied input to a configuration co...
Cisco Enterprise Nfv Infrastructure Software
5.9
CVSSv3
CVE-2018-0096
A vulnerability in the role-based access control (RBAC) functionality of Cisco Prime Infrastructure could allow an authenticated, remote malicious user to perform a privilege escalation in which one virtual domain user can view and modify another virtual domain configuration. The...
Cisco Prime Infrastructure 3.2\\(0.0\\)
Cisco Prime Infrastructure 3.3\\(0.0\\)
7.1
CVSSv3
CVE-2017-6767
A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated, remote malicious user to gain higher privileges than the account is assigned. The attacker will be granted the privileges of the last user to log in, regardless of whether t...
Cisco Application Policy Infrastructure Controller 1.0\\(3i\\)
Cisco Application Policy Infrastructure Controller 1.1\\(3f\\)
Cisco Application Policy Infrastructure Controller 1.3\\(1\\)
Cisco Application Policy Infrastructure Controller 1.1\\(1j\\)
Cisco Application Policy Infrastructure Controller 1.0\\(2j\\)
Cisco Application Policy Infrastructure Controller 2.0 Base
Cisco Application Policy Infrastructure Controller 1.0\\(3f\\)
Cisco Application Policy Infrastructure Controller 1.2.2
Cisco Application Policy Infrastructure Controller 1.2\\(3\\)
Cisco Application Policy Infrastructure Controller 1.0\\(1h\\)
Cisco Application Policy Infrastructure Controller 1.0\\(2m\\)
Cisco Application Policy Infrastructure Controller 1.0\\(1k\\)
Cisco Application Policy Infrastructure Controller 1.0\\(1n\\)
Cisco Application Policy Infrastructure Controller 1.1\\(0.920a\\)
Cisco Application Policy Infrastructure Controller 1.0\\(1e\\)
Cisco Application Policy Infrastructure Controller 1.0\\(3n\\)
Cisco Application Policy Infrastructure Controller 1.0\\(4h\\)
Cisco Application Policy Infrastructure Controller 1.3\\(2f\\)
Cisco Application Policy Infrastructure Controller 2.0\\(1\\)
Cisco Application Policy Infrastructure Controller 1.0\\(4o\\)
Cisco Application Policy Infrastructure Controller 1.0\\(3k\\)
Cisco Application Policy Infrastructure Controller 1.2 Base
8.8
CVSSv3
CVE-2016-6270
The handle_certificate function in /vmi/manager/engine/management/commands/apns_worker.py in Trend Micro Virtual Mobile Infrastructure prior to 5.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the password to api/v1/cfg/oauth/save_id...
Trendmicro Virtual Mobile Infrastructure 5.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »