Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
process integration vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2020-26826
Process Integration Monitoring of SAP NetWeaver AS JAVA, versions - 7.31, 7.40, 7.50, allows an malicious user to upload any file (including script files) without proper file format validation, leading to Unrestricted File Upload.
Sap Netweaver Application Server Java 7.31
Sap Netweaver Application Server Java 7.40
Sap Netweaver Application Server Java 7.50
NA
CVE-2024-28163
Under certain conditions, Support Web Pages of SAP NetWeaver Process Integration (PI) - versions 7.50, allows an malicious user to access information which would otherwise be restricted, causing low impact on Confidentiality with no impact on Integrity and Availability of the app...
7.1
CVSSv2
CVE-2015-0612
The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 prior to 8.5(1)SU6, 8.6 prior to 8.6(2a)SU4, and 9.x prior to 9.1(2)SU2, when SIP trunk integration is enabled, allows remote malicious users to cause a denial of service (SIP outage) via a cr...
Cisco Unity Connection 8.5 Base
Cisco Unity Connection 8.6 Base
Cisco Unity Connection 9.0\\(1\\)
Cisco Unity Connection 9.1\\(1\\)
Cisco Unity Connection 8.5\\(1\\)su4
Cisco Unity Connection 8.5\\(1\\)su5
Cisco Unity Connection 8.6\\(2a\\)
Cisco Unity Connection 8.6\\(2a\\)su1
Cisco Unity Connection 8.6\\(2a\\)su2
Cisco Unity Connection 8.6\\(2a\\)su3
Cisco Unity Connection 9.1\\(2\\)
Cisco Unity Connection 8.6\\(1a\\)
Cisco Unity Connection 8.5\\(1\\)su1
Cisco Unity Connection 8.5\\(1\\)su3
Cisco Unity Connection 8.6\\(1\\)
Cisco Unity Connection 8.6\\(2\\)
Cisco Unity Connection 8.5\\(1\\)
Cisco Unity Connection 8.5\\(1\\)su2
4
CVSSv2
CVE-2019-7616
Kibana versions prior to 6.8.2 and 7.2.1 contain a server side request forgery (SSRF) flaw in the graphite integration for Timelion visualizer. An attacker with administrative Kibana access could set the timelion:graphite.url configuration option to an arbitrary URL. This could p...
Elastic Kibana
1 Github repository
7.1
CVSSv2
CVE-2015-0616
The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 prior to 8.5(1)SU7, 8.6 prior to 8.6(2a)SU4, and 9.x prior to 9.1(2)SU2, when SIP trunk integration is enabled, allows remote malicious users to cause a denial of service (core dump and restar...
Cisco Unity Connection 8.6\\(2a\\)su3
Cisco Unity Connection 8.5\\(1\\)
Cisco Unity Connection 8.5\\(1\\)su1
Cisco Unity Connection 8.5\\(1\\)su2
Cisco Unity Connection 9.0\\(1\\)
Cisco Unity Connection 9.1\\(1\\)
Cisco Unity Connection 9.1\\(2\\)
Cisco Unity Connection 8.6\\(1\\)
Cisco Unity Connection 8.5 Base
Cisco Unity Connection 8.6\\(1a\\)
Cisco Unity Connection 8.6\\(2a\\)
Cisco Unity Connection 8.6\\(2a\\)su2
Cisco Unity Connection 8.5\\(1\\)su3
Cisco Unity Connection 8.5\\(1\\)su5
Cisco Unity Connection 8.6 Base
Cisco Unity Connection 8.6\\(2\\)
Cisco Unity Connection 8.6\\(2a\\)su1
Cisco Unity Connection 8.5\\(1\\)su4
Cisco Unity Connection 8.5\\(1\\)su6
7.1
CVSSv2
CVE-2015-0613
The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 prior to 8.5(1)SU7, 8.6 prior to 8.6(2a)SU4, 9.x prior to 9.1(2)SU2, and 10.0 prior to 10.0(1)SU1, when SIP trunk integration is enabled, allows remote malicious users to cause a denial of ser...
Cisco Unity Connection 8.6\\(1\\)
Cisco Unity Connection 8.6\\(1a\\)
Cisco Unity Connection 8.6\\(2\\)
Cisco Unity Connection 8.6\\(2a\\)
Cisco Unity Connection 8.6 Base
Cisco Unity Connection 8.5\\(1\\)su1
Cisco Unity Connection 8.5\\(1\\)su2
Cisco Unity Connection 8.5\\(1\\)su3
Cisco Unity Connection 8.5\\(1\\)su4
Cisco Unity Connection 8.5\\(1\\)su5
Cisco Unity Connection 8.5 Base
Cisco Unity Connection 9.1\\(1\\)
Cisco Unity Connection 8.6\\(2a\\)su2
Cisco Unity Connection 8.5\\(1\\)
Cisco Unity Connection 10.0.5
Cisco Unity Connection 9.0\\(1\\)
Cisco Unity Connection 9.1\\(2\\)
Cisco Unity Connection 8.6\\(2a\\)su1
Cisco Unity Connection 8.6\\(2a\\)su3
Cisco Unity Connection 8.5\\(1\\)su6
Cisco Unity Connection 10.0.0
7.1
CVSSv2
CVE-2015-0614
The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 prior to 8.5(1)SU7, 8.6 prior to 8.6(2a)SU4, 9.x prior to 9.1(2)SU2, and 10.0 prior to 10.0(1)SU1, when SIP trunk integration is enabled, allows remote malicious users to cause a denial of ser...
Cisco Unity Connection 8.6\\(2a\\)su2
Cisco Unity Connection 8.6\\(2a\\)su3
Cisco Unity Connection 8.5\\(1\\)
Cisco Unity Connection 8.5\\(1\\)su1
Cisco Unity Connection 9.0\\(1\\)
Cisco Unity Connection 9.1\\(1\\)
Cisco Unity Connection 9.1\\(2\\)
Cisco Unity Connection 8.6\\(1\\)
Cisco Unity Connection 10.0.5
Cisco Unity Connection 10.0.0
Cisco Unity Connection 8.5 Base
Cisco Unity Connection 8.6\\(2\\)
Cisco Unity Connection 8.6\\(2a\\)su1
Cisco Unity Connection 8.5\\(1\\)su2
Cisco Unity Connection 8.5\\(1\\)su4
Cisco Unity Connection 8.5\\(1\\)su6
Cisco Unity Connection 8.6 Base
Cisco Unity Connection 8.6\\(1a\\)
Cisco Unity Connection 8.6\\(2a\\)
Cisco Unity Connection 8.5\\(1\\)su3
Cisco Unity Connection 8.5\\(1\\)su5
4.3
CVSSv2
CVE-2021-45105
Apache Log4j2 versions 2.0-alpha1 up to and including 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted strin...
Apache Log4j
Netapp Cloud Manager -
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Sonicwall Network Security Manager
Sonicwall Email Security
Sonicwall Web Application Firewall
Sonicwall 6bk1602-0aa12-0tp0 Firmware
Sonicwall 6bk1602-0aa22-0tp0 Firmware
Sonicwall 6bk1602-0aa32-0tp0 Firmware
Sonicwall 6bk1602-0aa42-0tp0 Firmware
Sonicwall 6bk1602-0aa52-0tp0 Firmware
Oracle E-business Suite 12.2
Oracle Retail Back Office 14.1
Oracle Weblogic Server 12.2.1.3.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Webcenter Sites 12.2.1.3.0
Oracle Managed File Transfer 12.2.1.3.0
Oracle Retail Order Broker 16.0
Oracle Retail Integration Bus 14.1.3
Oracle Retail Returns Management 14.1
Oracle Retail Central Office 14.1
74 Github repositories
5 Articles
7.5
CVSSv2
CVE-2019-10086
In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an malicious user to access the classloader via the class property available on all Java objects. We, however were not using this by default characteristic of th...
Apache Commons Beanutils
Apache Nifi 1.14.0
Apache Nifi 1.15.0
Debian Debian Linux 8.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Aus 7.7
Redhat Enterprise Linux Server Tus 7.7
Redhat Enterprise Linux Eus 7.7
Redhat Jboss Enterprise Application Platform 7.2.0
Oracle Retail Xstore Point Of Service 15.0
Oracle Flexcube Private Banking 12.1.0
Oracle Banking Platform 2.4.0
Oracle Retail Xstore Point Of Service 7.1
Oracle Flexcube Private Banking 12.0.0
Oracle Service Bus 11.1.1.9.0
Oracle Fusion Middleware 11.1.1.9
7.2
CVSSv2
CVE-2019-9745
CloudCTI HIP Integrator Recognition Configuration Tool allows privilege escalation via its EXQUISE integration. This tool communicates with a service (Recognition Update Client Service) via an insecure communication channel (Named Pipe). The data (JSON) sent via this channel is u...
Cloudcti Hip Integrator Recognition Configuration Tool -
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »