Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
analyzer vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2019-0158
Insufficient path checking in the installation package for Intel(R) Graphics Performance Analyzer for Linux version 18.4 and before may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Graphics Performance Analyzer
1 Article
7.5
CVSSv3
CVE-2022-38112
In DPA 2022.4 and older releases, generated heap memory dumps contain sensitive information in cleartext.
Solarwinds Database Performance Analyzer
7.8
CVSSv3
CVE-2023-27505
Incorrect default permissions in some Intel(R) Advanced Link Analyzer Standard Edition software installers before version 22.1 .1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Advanced Link Analyzer
8.8
CVSSv3
CVE-2019-16553
A cross-site request forgery vulnerability in Jenkins Build Failure Analyzer Plugin 1.24.1 and previous versions allows malicious users to have Jenkins evaluate a computationally expensive regular expression.
Jenkins Build Failure Analyzer
4.3
CVSSv3
CVE-2019-16554
A missing permission check in Jenkins Build Failure Analyzer Plugin 1.24.1 and previous versions allows attackers with Overall/Read permission to have Jenkins evaluate a computationally expensive regular expression.
Jenkins Build Failure Analyzer
6.5
CVSSv3
CVE-2019-16555
A user-supplied regular expression in Jenkins Build Failure Analyzer Plugin 1.24.1 and previous versions was processed in a way that wasn't interruptible, allowing malicious users to have Jenkins evaluate a regular expression without the ability to interrupt this process.
Jenkins Build Failure Analyzer
7.8
CVSSv3
CVE-2022-27638
Uncontrolled search path element in the Intel(R) Advanced Link Analyzer Pro before version 22.2 and Standard edition software before version 22.1.1 STD may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Advanced Link Analyzer
6.1
CVSSv3
CVE-2018-7405
Cross-site scripting (XSS) in Zoho ManageEngine EventLog Analyzer prior to 11.12 Build 11120 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Zohocorp Manageengine Eventlog Analyzer
7.5
CVSSv3
CVE-2014-6038
Zoho ManageEngine EventLog Analyzer versions 7 up to and including 9.9 build 9002 have a database Information Disclosure Vulnerability. Fixed in EventLog Analyzer 10.0 Build 10000.
Zohocorp Manageengine Eventlog Analyzer
1 EDB exploit
2 Metasploit modules
7.5
CVSSv3
CVE-2014-6039
ManageEngine EventLog Analyzer version 7 up to and including 9.9 build 9002 has a Credentials Disclosure Vulnerability. Fixed version 10 Build 10000.
Zohocorp Manageengine Eventlog Analyzer
1 EDB exploit
2 Metasploit modules
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »