Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
management console vulnerabilities and exploits
(subscribe to this query)
7.4
CVSSv3
CVE-2020-25638
A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an malicious user to ac...
Hibernate Hibernate Orm
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Quarkus Quarkus
Oracle Retail Customer Management And Segmentation Foundation 19.0
Oracle Communications Cloud Native Core Console 1.9.0
2 Github repositories
8.8
CVSSv3
CVE-2019-17366
Citrix Application Delivery Management (ADM) 12.1 before build 54.13 has Incorrect Access Control.
Citrix Application Delivery Management 12.1
Citrix Application Delivery Management 13.0
9.8
CVSSv3
CVE-2018-17431
Web Console in Comodo UTM Firewall prior to 2.7.0 allows remote malicious users to execute arbitrary code without authentication via a crafted URL.
Comodo Unified Threat Management Firewall
1 Github repository
NA
CVE-2012-4933
The rtrlet web application in the Web Console in Novell ZENworks Asset Management (ZAM) 7.5 uses a hard-coded username of Ivanhoe and a hard-coded password of Scott for the (1) GetFile_Password and (2) GetConfigInfo_Password operations, which allows remote malicious users to obta...
Novell Zenworks Asset Management 7.5
9.8
CVSSv3
CVE-2012-4406
OpenStack Object Storage (swift) prior to 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote malicious users to execute arbitrary code via a crafted pickle object.
Openstack Swift
Fedoraproject Fedora 16
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Server 6.0
Redhat Storage 2.0
Redhat Storage For Public Cloud 2.0
Redhat Gluster Storage Server For On-premise 2.0
Redhat Gluster Storage Management Console 2.0
6.5
CVSSv3
CVE-2021-41973
In Apache MINA, a specifically crafted, malformed HTTP request may cause the HTTP Header decoder to loop indefinitely. The decoder assumed that the HTTP Header begins at the beginning of the buffer and loops if there is more data than expected. Please update MINA to 2.1.5 or grea...
Apache Mina
Oracle Customer Management And Segmentation Foundation 18.0
Oracle Banking Trade Finance Process Management 14.5
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Banking Payments 14.5
Oracle Banking Treasury Management 14.5
Oracle Customer Management And Segmentation Foundation 19.0
Oracle Fusion Middleware Common Libraries And Tools 12.2.1.4.0
Oracle Fusion Middleware Common Libraries And Tools 14.1.1.0.0
Oracle Oss Support Tools 2.12.42
Oracle Fusion Middleware Common Libraries And Tools 12.2.1.3.0
Oracle Flexcube Universal Banking
Oracle Flexcube Universal Banking 14.5
4.3
CVSSv3
CVE-2021-22096
In Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries.
Vmware Spring Framework
Netapp Snap Creator Framework -
Netapp Snapcenter -
Netapp Active Iq Unified Manager -
Netapp Management Services For Element Software And Netapp Hci -
Netapp Metrocluster Tiebreaker -
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Service Communication Proxy 1.15.0
2 Github repositories
6.5
CVSSv3
CVE-2021-30129
A vulnerability in sshd-core of Apache Mina SSHD allows an malicious user to overflow the server causing an OutOfMemory error. This issue affects the SFTP and port forwarding features of Apache Mina SSHD version 2.0.0 and later versions. It was addressed in Apache Mina SSHD 2.7.0
Apache Sshd
Oracle Retail Customer Management And Segmentation Foundation 18.0
Oracle Flexcube Universal Banking
Oracle Retail Customer Management And Segmentation Foundation 19.0
Oracle Middleware Common Libraries And Tools 12.2.1.4.0
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Banking Payments 14.5
Oracle Banking Trade Finance 14.5
Oracle Banking Treasury Management 14.5
Oracle Oss Support Tools 2.12.42
Oracle Flexcube Universal Banking 14.5
Oracle Middleware Common Libraries And Tools 14.1.1.0.0
Oracle Middleware Common Libraries And Tools 12.2.1.3.0
7
CVSSv3
CVE-2019-11486
The Siemens R3964 line discipline driver in drivers/tty/n_r3964.c in the Linux kernel prior to 5.0.8 has multiple race conditions.
Linux Linux Kernel
Debian Debian Linux 9.0
Opensuse Leap 42.3
Opensuse Leap 15.1
Netapp Active Iq -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Vasa Provider For Clustered Data Ontap 9.7
Netapp Storage Replication Adapter For Clustered Data Ontap 9.7
Netapp Virtual Storage Console 9.7
2.7
CVSSv3
CVE-2022-27506
Hard-coded credentials allow administrators to access the shell via the SD-WAN CLI
Citrix Sd-wan 110 Firmware
Citrix Sd-wan 210 Firmware
Citrix Sd-wan 400 Firmware
Citrix Sd-wan 410 Firmware
Citrix Sd-wan 1000 Firmware
Citrix Sd-wan 2000 Firmware
Citrix Sd-wan 2100 Firmware
Citrix Sd-wan 4000 Firmware
Citrix Sd-wan 4100 Firmware
Citrix Sd-wan 5100 Firmware
Citrix Sd-wan 6100 Firmware
Citrix Sd-wan 1100 Firmware
Citrix Sd-wan Center Management Console
Citrix Sd-wan Orchestrator
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »