Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security cloud vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-35945
Envoy is a cloud-native high-performance edge/middle/service proxy. Envoy’s HTTP/2 codec may leak a header map and bookkeeping structures upon receiving `RST_STREAM` immediately followed by the `GOAWAY` frames from an upstream server. In nghttp2, cleanup of pending requests...
Envoyproxy Envoy
Nghttp2 Nghttp2
1 Github repository
NA
CVE-2023-33155
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Microsoft Windows Server 2019 -
Microsoft Windows Server 2022 -
Microsoft Windows 10 1809
Microsoft Windows 11 21h2
Microsoft Windows 10 21h2
Microsoft Windows 11 22h2
Microsoft Windows 10 22h2
NA
CVE-2023-28953
IBM Cognos Analytics on Cloud Pak for Data 4.0 could allow an malicious user to make system calls that might compromise the security of the containers due to misconfigured security context. IBM X-Force ID: 251465.
Ibm Cognos Analytics Cartridge For Ibm Cloud Pak For Data
NA
CVE-2023-37261
OpenComputers is a Minecraft mod that adds programmable computers and robots to the game. This issue affects every version of OpenComputers with the Internet Card feature enabled; that is, OpenComputers 1.2.0 until 1.8.3 in their most common, default configurations. If the OpenCo...
Opencomputers Opencomputers
NA
CVE-2023-20180
A vulnerability in the web interface of Cisco Webex Meetings could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficient CSRF protections for the web interface on an a...
Cisco Webex Meetings 39.7.4
Cisco Webex Meetings 39.10
Cisco Webex Meetings 39.11
Cisco Webex Meetings 39.6
Cisco Webex Meetings 39.7
Cisco Webex Meetings 39.7.7
Cisco Webex Meetings 39.8
Cisco Webex Meetings 39.8.2
Cisco Webex Meetings 39.8.3
Cisco Webex Meetings 39.8.4
Cisco Webex Meetings 39.9
Cisco Webex Meetings 39.9.1
Cisco Webex Meetings 40.1
Cisco Webex Meetings 40.2
Cisco Webex Meetings 40.4
Cisco Webex Meetings 40.4.10
Cisco Webex Meetings 40.6
Cisco Webex Meetings 40.6.2
Cisco Webex Meetings 42.10
Cisco Webex Meetings 42.11
Cisco Webex Meetings 42.6
Cisco Webex Meetings 42.9
NA
CVE-2023-20133
A vulnerability in the web interface of Cisco Webex Meetings could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because of insufficient validation of user-supplied in...
Cisco Webex Meetings 39.7.4
Cisco Webex Meetings 39.10
Cisco Webex Meetings 39.11
Cisco Webex Meetings 39.6
Cisco Webex Meetings 39.7
Cisco Webex Meetings 39.7.7
Cisco Webex Meetings 39.8
Cisco Webex Meetings 39.8.2
Cisco Webex Meetings 39.8.3
Cisco Webex Meetings 39.8.4
Cisco Webex Meetings 39.9
Cisco Webex Meetings 39.9.1
Cisco Webex Meetings 40.1
Cisco Webex Meetings 40.2
Cisco Webex Meetings 40.4
Cisco Webex Meetings 40.4.10
Cisco Webex Meetings 40.6
Cisco Webex Meetings 40.6.2
Cisco Webex Meetings 42.10
Cisco Webex Meetings 42.11
Cisco Webex Meetings 42.6
Cisco Webex Meetings 42.9
NA
CVE-2023-30993
IBM Cloud Pak for Security (CP4S) 1.9.0.0 up to and including 1.9.2.0 could allow an attacker with a valid API key for one tenant to access data from another tenant's account. IBM X-Force ID: 254136.
Ibm Cloud Pak For Security
NA
CVE-2023-22593
IBM Robotic Process Automation for Cloud Pak 21.0.1 up to and including 21.0.7.3 and 23.0.0 up to and including 23.0.3 is vulnerable to security misconfiguration of the Redis container which may provide elevated privileges. IBM X-Force ID: 244074.
Ibm Robotic Process Automation
NA
CVE-2023-23468
IBM Robotic Process Automation for Cloud Pak 21.0.1 up to and including 21.0.7.3 and 23.0.0 up to and including 23.0.3 is vulnerable to insufficient security configuration which may allow creation of namespaces within a cluster. IBM X-Force ID: 244500.
Ibm Robotic Process Automation
NA
CVE-2023-34240
Cloudexplorer-lite is an open source cloud software stack. Weak passwords can be easily guessed and are an easy target for brute force attacks. This can lead to an authentication system failure and compromise system security. Versions of cloudexplorer-lite before 1.2.0 did not en...
Fit2cloud Cloudexplorer Lite
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »