Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cosminexus application server vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2019-12814
A Polymorphic Typing issue exists in FasterXML jackson-databind 2.x up to and including 2.9.9. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint and the service has JDOM 1.x or 2.x jar in the classpath, an attacker...
Fasterxml Jackson-databind
Debian Debian Linux 8.0
3 Github repositories
7.5
CVSSv3
CVE-2019-12086
A Polymorphic Typing issue exists in FasterXML jackson-databind 2.x prior to 2.9.9. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint, the service has the mysql-connector-java jar (8.0.14 or earlier) in the classpa...
Fasterxml Jackson-databind
Debian Debian Linux 8.0
Debian Debian Linux 9.0
4 Github repositories
5.9
CVSSv3
CVE-2019-1559
If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 by...
Openssl Openssl
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 16.04
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Netapp Hyper Converged Infrastructure -
Netapp Cloud Backup -
Netapp Santricity Smi-s Provider -
Netapp Element Software -
Netapp Snapdrive -
Netapp Snapcenter -
Netapp Storage Automation Store -
Netapp Ontap Select Deploy -
Netapp Steelstore Cloud Integrated Storage -
Netapp Oncommand Unified Manager -
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Storagegrid
Netapp Oncommand Insight -
Netapp Ontap Select Deploy Administration Utility -
Netapp Service Processor -
3 Github repositories
6.5
CVSSv3
CVE-2018-11212
An issue exists in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote malicious users to cause a denial of service (divide-by-zero error) via a crafted file.
Ijg Libjpeg 9a
Debian Debian Linux 8.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 12.04
Netapp Snapmanager
Netapp Oncommand Workflow Automation
Netapp Oncommand Unified Manager
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jre 8.0
Oracle Jdk 11.0.1
Redhat Satellite 5.8
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Server 7.0
Opensuse Leap 15.0
NA
CVE-2013-3827
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2; the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.3.0, 11.1.2.4.0, and 12.1.2.0.0; and the Oracle WebLogic Server component in Oracle Fusion Mi...
Oracle Fusion Middleware 11.1.2.3.0
Oracle Fusion Middleware 11.1.2.4.0
Oracle Fusion Middleware 3.0.1
Oracle Fusion Middleware 3.1.2
Oracle Fusion Middleware 12.1.2.0.0
Oracle Fusion Middleware 12.1.1
Oracle Fusion Middleware 10.3.6
Oracle Fusion Middleware 2.1.1
1 EDB exploit
1 Github repository
NA
CVE-2009-4776
Buffer overflow in Hitachi Cosminexus V4 through V8, Processing Kit for XML, and Developer's Kit for Java, as used in products such as uCosminexus, Electronic Form Workflow, Groupmax, and IBM XL C/C++ Enterprise Edition 7 and 8, allows remote malicious users to have an unkno...
Hitachi Ucosminexus Application Server 06-70-\\/e
Hitachi Ucosminexus Application Server 06-70-\\/f
Hitachi Ucosminexus Application Server 06-71-\\/g
Hitachi Ucosminexus Application Server 06-71
Hitachi Ucosminexus Application Server 06-72-\\/d
Hitachi Ucosminexus Application Server 6.7
Hitachi Ucosminexus Application Server 7
Hitachi Ucosminexus Application Server 8
Hitachi Ucosminexus Collaboration 06-35-\\/f
Hitachi Ucosminexus Collaboration 06-35
Hitachi Ucosminexus Developer 06-70-\\/f
Hitachi Ucosminexus Developer 07-60
Hitachi Ucosminexus Developer 08-00
Hitachi Ucosminexus Developer 6.7
Hitachi Ucosminexus Operator 7
Hitachi Ucosminexus Operator 8
Hitachi Ucosminexus Service Architect 07-00
Hitachi Ucosminexus Service Architect 07-60
Hitachi Ucosminexus Application Server 06-70-\\/n
Hitachi Ucosminexus Application Server 06-70
Hitachi Ucosminexus Application Server 06-70f
Hitachi Ucosminexus Application Server 07-00
NA
CVE-2007-5809
Cross-site scripting (XSS) vulnerability in Hitachi Web Server 01-00 through 03-10, as used by certain Cosminexus products, allows remote malicious users to inject arbitrary web script or HTML via unspecified HTTP requests that trigger creation of a server-status page.
Hitachi Web Server 01 01
Hitachi Web Server 02 00
Hitachi Web Server 02 02
Hitachi Web Server 02 04 B
Hitachi Web Server 03 00
Hitachi Cosminexus Developer Standard Version 6
Hitachi Cosminexus Server
Hitachi Ucosminexus Service Platform
Hitachi Web Server 01 02 D
Hitachi Web Server 02 00 A
Hitachi Web Server 02 06 A
Hitachi Cosminexus Application Server Enterprise
Hitachi Cosminexus Application Server Standard
Hitachi Ucosminexus Developer Light
Hitachi Ucosminexus Developer Professional
Hitachi Web Server 01 01 D
Hitachi Web Server 03 00 01
Hitachi Ucosminexus Application Server Enterprise
Hitachi Ucosminexus Application Server Standard
Hitachi Web Server 01 00
Hitachi Web Server 01 02 E
Hitachi Cosminexus Developer Light Version 6
NA
CVE-2007-5810
Hitachi Web Server 01-00 through 03-00-01, as used by certain Cosminexus products, does not properly validate SSL client certificates, which might allow remote malicious users to spoof authentication via a client certificate with a forged signature.
Hitachi Web Server 01 00
Hitachi Web Server 01 02 D
Hitachi Web Server 01 02 E
Hitachi Web Server 02 00 A
Hitachi Web Server 02 02
Hitachi Web Server 02 06 A
Hitachi Web Server 03 00
Hitachi Web Server 01 01
Hitachi Web Server 02 00
Hitachi Web Server 02 04 B
Hitachi Web Server 03 00 01
Hitachi Cosminexus Server
Hitachi Ucosminexus Application Server Enterprise
Hitachi Cosminexus Application Server Standard
Hitachi Cosminexus Developer Light Version 6
Hitachi Ucosminexus Developer Professional
Hitachi Ucosminexus Developer Standard
Hitachi Cosminexus Developer Professional Version 6
Hitachi Cosminexus Developer Standard Version 6
Hitachi Ucosminexus Service Architect
Hitachi Ucosminexus Service Platform
Hitachi Web Server 01 01 D
NA
CVE-2007-5281
The Java Secure Socket Extension (JSSE) in the Hitachi Cosminexus Developer's Kit for Java in various Hitachi Cosminexus 7.5 products prior to 07-50-01, when using JSSE for SSL/TLS support, allows remote malicious users to cause a denial of service via certain SSL/TLS handsh...
Hitachi Ucosminexus Operator 07 50
Hitachi Ucosminexus Service Architect 7 50
Hitachi Ucosminexus Application Server Standard 7 50
Hitachi Ucosminexus Client 07 50
Hitachi Ucosminexus Developer Professional 07 50
Hitachi Ucosminexus Developer Standard 07 50
Hitachi Ucosminexus Application Server Enterprise 07 50
Hitachi Ucosminexus Service Platform 7 50
NA
CVE-2007-4759
Multiple unspecified vulnerabilities in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote malicious users to cause a denial of service via unspecified vectors.
Hitachi Ucosminexus Application Server Enterprise 07 00
Hitachi Ucosminexus Application Server Enterprise 07 00 01
Hitachi Ucosminexus Application Server Enterprise 07 00 02
Hitachi Ucosminexus Application Server Enterprise 07 10 01
Hitachi Ucosminexus Application Server Standard 07 00
Hitachi Ucosminexus Application Server Standard 07 10
Hitachi Ucosminexus Application Server Standard 7 20
Hitachi Ucosminexus Application Server Standard 7 20 01
Hitachi Ucosminexus Service Platform 07 10
Hitachi Ucosminexus Application Server Enterprise 07 10
Hitachi Ucosminexus Application Server Standard 07 00 02
Hitachi Ucosminexus Application Server Standard 07 00 03
Hitachi Ucosminexus Application Server Standard 7 10 01
Hitachi Ucosminexus Service Platform 07 00 02
Hitachi Ucosminexus Service Platform 07 00 03
Hitachi Ucosminexus Service Platform 7 20 01
Hitachi Ucosminexus Application Server Enterprise 07 00 03
Hitachi Ucosminexus Application Server Enterprise 7 20
Hitachi Ucosminexus Application Server Standard 07 00 01
Hitachi Ucosminexus Service Platform 07 00
Hitachi Ucosminexus Service Platform 07 10 01
Hitachi Ucosminexus Application Server Enterprise 7 20 01
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »