Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
active management technology vulnerabilities and exploits
(subscribe to this query)
409
VMScore
CVE-2020-0541
Out-of-bounds write in subsystem for Intel(R) CSME versions prior to 12.0.64, 13.0.32, 14.0.33 and 14.5.12 may allow a privileged user to potentially enable escalation of privilege via local access.
Intel Converged Security Management Engine Firmware
Intel Converged Security Management Engine Firmware 14.5.11
409
VMScore
CVE-2020-0542
Improper buffer restrictions in subsystem for Intel(R) CSME versions prior to 12.0.64, 13.0.32, 14.0.33 and 14.5.12 may allow an authenticated user to potentially enable escalation of privilege, information disclosure or denial of service via local access.
Intel Converged Security Management Engine Firmware
Intel Converged Security Management Engine Firmware 14.5.11
409
VMScore
CVE-2020-0533
Reversible one-way hash in Intel(R) CSME versions prior to 11.8.76, 11.12.77 and 11.22.77 may allow a privileged user to potentially enable escalation of privilege, denial of service or information disclosure via local access.
Intel Converged Security Management Engine Firmware
668
VMScore
CVE-2019-13990
initDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracotta Quartz Scheduler up to and including 2.3.0 allows XXE attacks via a job description.
Softwareag Quartz
Oracle Flexcube Investor Servicing 12.3.0
Oracle Flexcube Investor Servicing 12.1.0
Oracle Retail Xstore Point Of Service 15.0
Oracle Flexcube Private Banking 12.1.0
Oracle Primavera Unifier 16.2
Oracle Flexcube Private Banking 12.0.0
Oracle Primavera Unifier 16.1
Oracle Retail Integration Bus 15.0
Oracle Retail Back Office 14.1
Oracle Flexcube Investor Servicing 12.4.0
Oracle Webcenter Sites 12.2.1.3.0
Oracle Retail Xstore Point Of Service 16.0
Oracle Fusion Middleware Mapviewer 12.2.1.3.0
Oracle Retail Order Broker 15.0
Oracle Retail Order Broker 16.0
Oracle Retail Integration Bus 16.0
Oracle Retail Returns Management 14.1
Oracle Retail Central Office 14.1
Oracle Primavera Unifier 18.8
Oracle Retail Point-of-service 14.1
Oracle Primavera Unifier
2 Github repositories
445
VMScore
CVE-2020-0536
Improper input validation in the DAL subsystem for Intel(R) CSME versions prior to 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32,14.0.33 and Intel(R) TXE versions prior to 3.1.75 and 4.0.25 may allow an unauthenticated user to potentially enable information disclosure via network...
Intel Converged Security Management Engine Firmware
Intel Trusted Execution Engine Firmware
187
VMScore
CVE-2020-0539
Path traversal in subsystem for Intel(R) DAL software for Intel(R) CSME versions prior to 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32, 14.0.33 and Intel(R) TXE versions prior to 3.1.75, 4.0.25 may allow an unprivileged user to potentially enable denial of service via local acce...
Intel Converged Security Management Engine Firmware
Intel Trusted Execution Engine Firmware
187
VMScore
CVE-2020-0545
Integer overflow in subsystem for Intel(R) CSME versions prior to 11.8.77, 11.12.77, 11.22.77 and Intel(R) TXE versions prior to 3.1.75, 4.0.25 and Intel(R) Server Platform Services (SPS) versions before SPS_E5_04.01.04.380.0, SPS_SoC-X_04.00.04.128.0, SPS_SoC-A_04.00.04.211.0, S...
Intel Converged Security Management Engine Firmware
Intel Server Platform Services
Intel Trusted Execution Engine
392
VMScore
CVE-2020-8755
Race condition in subsystem for Intel(R) CSME versions prior to 12.0.70 and 14.0.45, Intel(R) SPS versions before E5_04.01.04.400 and E3_05.01.04.200 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
Intel Converged Security And Management Engine
Intel Server Platform Services
409
VMScore
CVE-2020-8744
Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions prior to 4.0.30 Intel(R) SPS versions before E3_05.01.04.200 may allow a privileged user to potentially enable escalation of privilege via ...
Intel Trusted Execution Engine
Intel Server Platform Services
Intel Converged Security And Management Engine
Siemens Simatic S7-1518-4 Pn/dp Mfp Firmware -
Siemens Simatic S7-1518f-4 Pn/dp Mfp Firmware -
Siemens Simatic S7-1500 Firmware -
231
VMScore
CVE-2019-7317
png_image_free in png.c in libpng 1.6.x prior to 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute.
Libpng Libpng
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 19.04
Oracle Jdk 11.0.3
Oracle Jdk 12.0.1
Oracle Java Se 8u212
Oracle Java Se 7u221
Oracle Mysql
Oracle Hyperion Infrastructure Technology 11.2.6.0
Hpe Xp7 Command View Advanced Edition Suite
Hp Xp7 Command View
Mozilla Thunderbird -
Mozilla Firefox Esr -
Opensuse Leap 42.3
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Package Hub -
Netapp Cloud Backup -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5841
file upload
man-in-the-middle
arbitrary
CVE-2024-27801
CVE-2024-28020
CVE-2024-30080
CVE-2024-30069
CVE-2024-5843
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »