Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infrastructure vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2018-0482
A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of the affected system. The vulnerability is d...
Cisco Prime Infrastructure 3.5\\(0.0\\)
NA
CVE-2010-1972
The default configuration of HP Client Automation (HPCA) Enterprise Infrastructure (aka Radia) allows remote malicious users to read log files, and consequently cause a denial of service or have unspecified other impact, via web requests.
Hp Client Automation Enterprise Infrastructure
6.1
CVSSv3
CVE-2020-14854
Vulnerability in the Hyperion Infrastructure Technology product of Oracle Hyperion (component: UI and Visualization). The supported version that is affected is 11.1.2.4. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Hy...
Oracle Hyperion Infrastructure Technology 11.1.2.4
6.1
CVSSv3
CVE-2017-6611
A vulnerability in the web framework code of Cisco Prime Infrastructure 2.2(2) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against the user of the web interface of the affected system. The vulnerability is due to insufficie...
Cisco Prime Infrastructure 2.2\\(2\\)
4.8
CVSSv3
CVE-2021-23284
Eaton Intelligent Power Manager Infrastructure (IPM Infrastructure) version 1.5.0plus205 and all prior versions are vulnerable to Stored Cross-site Scripting vulnerability. This issue affects: Eaton Intelligent Power Manager Infrastructure (IPM Infrastructure) all version 1.5.0pl...
Eaton Intelligent Power Manager Infrastructure
5.4
CVSSv3
CVE-2017-3869
An API Credentials Management vulnerability in the APIs for Cisco Prime Infrastructure could allow an authenticated, remote malicious user to access an API that should be restricted to a privileged user. The attacker needs to have valid credentials. More Information: CSCuy36192. ...
Cisco Prime Infrastructure 3.1\\(1\\)
8.6
CVSSv3
CVE-2016-5803
An issue exists in CA Unified Infrastructure Management Version 8.47 and previous versions. The Unified Infrastructure Management software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such ...
Ca Technologies Unified Infrastructure Management
1 Article
7.5
CVSSv3
CVE-2023-39379
Fujitsu Software Infrastructure Manager (ISM) stores sensitive information at the product's maintenance data (ismsnap) in cleartext form. As a result, the password for the proxy server that is configured in ISM may be retrieved. Affected products and versions are as follows:...
Fujitsu Software Infrastructure Manager 2.8.0.060
5.2
CVSSv3
CVE-2021-2347
Vulnerability in the Hyperion Infrastructure Technology product of Oracle Hyperion (component: Lifecycle Management). The supported version that is affected is 11.2.5.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Hy...
Oracle Hyperion Infrastructure Technology 11.2.5.0
7.5
CVSSv3
CVE-2017-11469
get2post.php in IDERA Uptime Monitor 7.8 has directory traversal in the file_name parameter.
Idera Uptime Infrastructure Monitor 7.8
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »