Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote console vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-33732
Cross Site Scripting (XSS) in the New Policy form in Microworld Technologies eScan management console 14.0.1400.2281 allows a remote malicious user to inject arbitrary code via the vulnerable parameters type, txtPolicyType, and Deletefileval.
Escanav Escan Management Console 14.0.1400.2281
2 Github repositories
4.3
CVSSv2
CVE-2007-6406
Multiple cross-site scripting (XSS) vulnerabilities in CA (formerly Computer Associates) eTrust Threat Management Console allow remote malicious users to inject arbitrary web script or HTML via the IP Address field and other unspecified fields.
Broadcom Etrust Threat Management Console
NA
CVE-2023-31703
Cross Site Scripting (XSS) in the edit user form in Microworld Technologies eScan management console 14.0.1400.2281 allows remote malicious user to inject arbitrary code via the from parameter.
Escanav Escan Management Console 14.0.1400.2281
1 Github repository
6.8
CVSSv2
CVE-2011-1101
Multiple unspecified vulnerabilities in a third-party component of the Citrix Licensing Administration Console 11.6, formerly License Management Console, allow remote malicious users to (1) access unauthorized "license administration functionality" or (2) cause a denial...
Citrix Licensing Administration Console 11.6
6.5
CVSSv2
CVE-2014-9000
Mule Enterprise Management Console (MMC) does not properly restrict access to handler/securityService.rpc, which allows remote authenticated users to gain administrator privileges and execute arbitrary code via a crafted request that adds a new user. NOTE: this issue was original...
Mulesoft Mule Enterprise Management Console -
1 EDB exploit
7.5
CVSSv2
CVE-2016-4322
BMC BladeLogic Server Automation (BSA) prior to 8.7 Patch 3 allows remote malicious users to bypass authentication and consequently read arbitrary files or possibly have unspecified other impact by leveraging a "logic flaw" in the authentication process.
Bmc Bladelogic Server Automation Console 8.7.00
6.8
CVSSv2
CVE-2016-5711
NetApp Virtual Storage Console for VMware vSphere prior to 6.2.1 uses a non-unique certificate, which allows remote malicious users to conduct man-in-the-middle attacks via unspecified vectors.
Netapp Virtual Storage Console For Vmware Vsphere
7.5
CVSSv2
CVE-2007-2343
Stack-based buffer overflow in the TFTPD component in Enterasys NetSight Console 2.1 and NetSight Inventory Manager 2.1, and possibly earlier, allows remote malicious users to execute arbitrary code via crafted request packets that contain long file names.
Enterasys Netsight Console
Enterasys Netsight Inventory Manager
5
CVSSv2
CVE-2000-0668
pam_console PAM module in Linux systems allows a user to access the system console and reboot the system when a display manager such as gdm or kdm has XDMCP enabled.
Conectiva Linux 4.0
Conectiva Linux 4.0es
Michael K. Johnson Pam Console 0.66
Michael K. Johnson Pam Console 0.72 Unpatched
Conectiva Linux 4.1
Conectiva Linux 4.2
Conectiva Linux 5.0
Conectiva Linux 5.1
Redhat Linux 6.0
Redhat Linux 6.2
Redhat Linux 6.1
1 EDB exploit
7.8
CVSSv2
CVE-2007-2344
The BOOTPD component in Enterasys NetSight Console 2.1 and NetSight Inventory Manager 2.1, and possibly earlier, on Windows allows remote malicious users to cause a denial of service (daemon crash) via a UDP packet that contains an invalid "packet type" field.
Enterasys Netsight Inventory Manager 2.1
Enterasys Netsight Console 2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »