Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
portal vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2016-10667
selenium-portal is a Selenium Testing Framework selenium-portal downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested resources with an attacker controlled copy if th...
Selenium-portal Project Selenium-portal
9.3
CVSSv2
CVE-2014-6140
IBM Tivoli Endpoint Manager Mobile Device Management (MDM) prior to 9.0.60100 uses the same secret HMAC token across different customers' installations, which allows remote malicious users to execute arbitrary code via crafted marshalled Ruby objects in cookies to (1) Enroll...
Ibm Tivoli Endpoint Manager Mobile Device Management
9.3
CVSSv2
CVE-2014-0709
Cisco UCS Director (formerly Cloupia) prior to 4.0.0.3 has a hardcoded password for the root account, which makes it easier for remote malicious users to obtain administrative access via an SSH session to the CLI interface, aka Bug ID CSCui73930.
Cisco Ucs Director
Cisco Ucs Director 4.0.0.0
Cisco Ucs Director 4.0.0.1
9.3
CVSSv2
CVE-2013-1315
Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013; Office Web Apps 2010; Excel 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office for Mac 2011; Excel Viewer; and Office Compatibility Pack SP3 allow remote malicious users to execute arbitrary code or ca...
Microsoft Excel Viewer
Microsoft Excel 2013
Microsoft Office Compatibility Pack
Microsoft Excel 2003
Microsoft Office 2011
Microsoft Sharepoint Foundation 2010
Microsoft Excel 2010
Microsoft Excel 2007
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Services 2.0
Microsoft Sharepoint Portal Server 2003
Microsoft Office Web Apps 2010
9.3
CVSSv2
CVE-2013-3847
Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word Web App 2010 SP1 in Office Web Apps 2010, Word 2003 SP3, Word 2007 SP3, Word 2010 SP1, Office Compatibility Pack SP3, and Word Viewer allow remote malicious users to execute arbitrary code or cause a denial of...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Services 2.0
Microsoft Sharepoint Portal Server 2003
Microsoft Office Web Apps 2010
Microsoft Word Viewer
Microsoft Office Compatibility Pack
Microsoft Word 2010
Microsoft Word 2007
Microsoft Word 2003
9.3
CVSSv2
CVE-2013-0686
Invensys Wonderware Information Server (WIS) 4.0 SP1SP1, 4.5- Portal, and 5.0- Portal allows remote malicious users to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via an XML document containing an externa...
Invensys Wonderware Information Server 4.5
Invensys Wonderware Information Server 5.0
Invensys Wonderware Information Server 4.0
9.3
CVSSv2
CVE-2013-0685
Invensys Wonderware Information Server (WIS) 4.0 SP1SP1, 4.5- Portal, and 5.0- Portal does not restrict unspecified size and amount values, which allows remote malicious users to execute arbitrary code or cause a denial of service (resource consumption) via unknown vectors.
Invensys Wonderware Information Server 4.5
Invensys Wonderware Information Server 5.0
Invensys Wonderware Information Server 4.0
9.3
CVSSv2
CVE-2013-0079
Microsoft Visio Viewer 2010 SP1 allows remote malicious users to execute arbitrary code via a crafted Visio file that triggers incorrect memory allocation, aka "Visio Viewer Tree Object Type Confusion Vulnerability."
Microsoft Visio 2010
Microsoft Office Filter Pack 2010
Microsoft Visio Viewer 2010
9.3
CVSSv2
CVE-2011-4875
Stack-based buffer overflow in HmiLoad in the runtime loader in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime, when Transf...
Siemens Wincc Flexible 2004
Siemens Wincc Flexible 2005
Siemens Wincc Flexible 2007
Siemens Wincc Flexible 2008
Siemens Wincc V11
Siemens Simatic Hmi Panels Tp
Siemens Simatic Hmi Panels Op
Siemens Simatic Hmi Panels Mp
Siemens Simatic Hmi Panels Comfort Panels
Siemens Simatic Hmi Panels Mobile Panels
Siemens Wincc Runtime Advanced V11
Siemens Wincc Flexible Runtime
1 EDB exploit
9.3
CVSSv2
CVE-2011-4508
The HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime generates predictable a...
Siemens Wincc Flexible 2008
Siemens Wincc Flexible 2004
Siemens Wincc Flexible 2005
Siemens Wincc Flexible 2007
Siemens Wincc
Siemens Wincc V11
Siemens Simatic Hmi Panels Op
Siemens Simatic Hmi Panels Comfort Panels
Siemens Simatic Hmi Panels Tp
Siemens Simatic Hmi Panels Mp
Siemens Simatic Hmi Panels Mobile Panels
Siemens Wincc Runtime Advanced V11
Siemens Wincc Flexible Runtime
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »