Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security cloud vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-26809
SAP Commerce Cloud, versions- 1808,1811,1905,2005, allows an malicious user to bypass existing authentication and permission checks via the '/medias' endpoint hence gaining access to Secure Media folders. This folder could contain sensitive files that results in disclos...
Sap Commerce Cloud 1808
Sap Commerce Cloud 1811
Sap Commerce Cloud 1905
Sap Commerce Cloud 2005
NA
CVE-2022-31681
VMware ESXi contains a null-pointer deference vulnerability. A malicious actor with privileges within the VMX process only, may create a denial of service condition on the host.
Vmware Esxi 7.0
Vmware Esxi
Vmware Cloud Foundation
Vmware Cloud Foundation 4.4.1
Vmware Cloud Foundation 4.4.1.1
Vmware Cloud Foundation 4.4
7.5
CVSSv2
CVE-2016-0896
Pivotal Cloud Foundry (PCF) Elastic Runtime prior to 1.6.34 and 1.7.x prior to 1.7.12 places 169.254.0.0/16 in the all_open Application Security Group, which might allow remote malicious users to bypass intended network-connectivity restrictions by leveraging access to the 169.25...
Pivotal Software Cloud Foundry Elastic Runtime 1.7.6
Pivotal Software Cloud Foundry Elastic Runtime 1.7.4
Pivotal Software Cloud Foundry Elastic Runtime 1.7.5
Pivotal Software Cloud Foundry Elastic Runtime 1.7.7
Pivotal Software Cloud Foundry Elastic Runtime 1.7.0
Pivotal Software Cloud Foundry Elastic Runtime 1.7.1
Pivotal Software Cloud Foundry Elastic Runtime 1.7.8
Pivotal Software Cloud Foundry Elastic Runtime 1.7.9
Pivotal Software Cloud Foundry Elastic Runtime 1.7.10
Pivotal Software Cloud Foundry Elastic Runtime 1.7.2
Pivotal Software Cloud Foundry Elastic Runtime 1.7.3
Pivotal Software Cloud Foundry Elastic Runtime 1.7.11
Pivotal Software Cloud Foundry Elastic Runtime
4
CVSSv2
CVE-2016-6122
IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 discloses answers to security questions in a response to authenticated users.
Ibm Kenexa Lms On Cloud 13.2.4
Ibm Kenexa Lms On Cloud 13.2.3
Ibm Kenexa Lms On Cloud 13.2.2
Ibm Kenexa Lms On Cloud 13.1
Ibm Kenexa Lms On Cloud 13.2
4.3
CVSSv2
CVE-2022-28875
A Denial-of-Service (DoS) vulnerability exists in F-Secure Atlant and in certain WithSecure products whereby the scanning the aemobile component can crash the scanning engine. The exploit can be triggered remotely by an attacker.
F-secure Linux Security -
F-secure Cloud Protection For Salesforce -
F-secure Atlant -
F-secure Internet Gatekeeper -
F-secure Elements Collaboration Protection -
F-secure Elements Endpoint Protection -
F-secure Elements Endpoint Detection And Response -
7.5
CVSSv2
CVE-2022-22972
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users. A malicious actor with network access to the UI may be able to obtain administrative access without the need to authenticate.
Vmware Identity Manager 3.3.3
Vmware Identity Manager 3.3.4
Vmware Identity Manager 3.3.5
Vmware Identity Manager 3.3.6
Vmware Vrealize Automation 7.6
Vmware Workspace One Access 20.10.0.0
Vmware Workspace One Access 20.10.0.1
Vmware Workspace One Access 21.08.0.0
Vmware Workspace One Access 21.08.0.1
Vmware Cloud Foundation 4.0
Vmware Cloud Foundation 4.0.1
Vmware Vrealize Suite Lifecycle Manager 8.0
Vmware Vrealize Suite Lifecycle Manager 8.0.1
Vmware Vrealize Suite Lifecycle Manager 8.1
Vmware Vrealize Suite Lifecycle Manager 8.2
Vmware Cloud Foundation 3.0
Vmware Cloud Foundation 3.0.1
Vmware Cloud Foundation 3.0.1.1
Vmware Cloud Foundation 3.5
Vmware Cloud Foundation 3.5.1
Vmware Cloud Foundation 3.7
Vmware Cloud Foundation 3.7.1
6 Github repositories
2 Articles
3.5
CVSSv2
CVE-2021-3572
A flaw was found in python-pip in the way it handled Unicode separators in git references. A remote attacker could possibly use this issue to install a different revision on a repository. The highest threat from this vulnerability is to data integrity. This is fixed in python-pip...
Pypa Pip
Oracle Agile Plm 9.3.6
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 22.1.0
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 1.10.0
Oracle Communications Cloud Native Core Policy 22.1.3
3 Github repositories
NA
CVE-2023-22081
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u381, 8u381-perf, 11.0.20, 17.0.8, 21; Oracle GraalVM for JDK: 17.0.8, 21; Oracle ...
Oracle Jdk 11.0.2
Oracle Jre 11.0.2
Oracle Graalvm For Jdk 17.0.8
Oracle Graalvm For Jdk 21
Oracle Jdk 21.0.0
Oracle Jre 21.0.0
Oracle Jdk 17.0.8
Oracle Jre 17.0.8
Oracle Jdk 1.8.0
Oracle Jre 1.8.0
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
2.1
CVSSv2
CVE-2018-18366
Symantec Norton Security before 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and before 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud before 22.16.3 may be susceptible to a kernel memory disclosure, whi...
Symantec Norton Security
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection Cloud Agent
Symantec Endpoint Protection Sep-12.1.7484.7002
Symantec Endpoint Protection Nis-22.15.2.22
Symantec Endpoint Protection Cloud
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14
5
CVSSv2
CVE-2018-6301
Arbitrary camera access and monitoring via cloud in Hanwha Techwin Smartcams
Hanwha-security Snh-v6410pn Firmware -
Hanwha-security Snh-v6410pnw Firmware -
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »