Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
data engine vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2017-6701
A vulnerability in the web application interface of the Cisco Identity Services Engine (ISE) portal could allow an unauthenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of an affected system. More Informat...
Cisco Identity Services Engine 2.1\\(102.101\\)
357
VMScore
CVE-2022-20819
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote malicious user to obtain sensitive information from an affected device. This vulnerability exists because administrative privilege levels for sensiti...
Cisco Identity Services Engine 2.4.0.357
Cisco Identity Services Engine 2.6.0.156
Cisco Identity Services Engine
606
VMScore
CVE-2019-17195
Connect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, which could result in an application crash (potential information disclosure) or a potential authentication bypass.
Connect2id Nimbus Jose\\+jwt
Apache Hadoop 3.2.1
Oracle Solaris Cluster 4.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Weblogic Server 12.2.1.4.0
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Enterprise Manager Base Platform 13.4.0.0
Oracle Primavera Gateway 19.12.0
Oracle Data Integrator 12.2.1.4.0
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Primavera Gateway
Oracle Communications Pricing Design Center 12.0.0.3.0
Oracle Jd Edwards Enterpriseone Tools
Oracle Policy Automation
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Insurance Policy Administration
Oracle Healthcare Data Repository 8.1.0
Oracle Jd Edwards Enterpriseone Orchestrator
356
VMScore
CVE-2015-4219
Cisco Secure Access Control System prior to 5.4(0.46.2) and 5.5 prior to 5.5(0.46) and Cisco Identity Services Engine 1.0(4.573) do not properly implement access control for support bundles, which allows remote authenticated users to obtain sensitive information via brute-force a...
Cisco Secure Access Control System
Cisco Secure Access Control System 5.3.0.40.5
Cisco Identity Services Engine Software 1.0.4.573
187
VMScore
CVE-2020-1736
A flaw was found in Ansible Engine when a file is moved using atomic_move primitive as the file mode cannot be specified. This sets the destination files world-readable if the destination file does not exist and if the file exists, the file could be changed to have less restricti...
Redhat Cloudforms Management Engine 5.0
Redhat Ansible Tower
Redhat Ansible
Redhat Openstack 13
Fedoraproject Fedora 31
Fedoraproject Fedora 32
384
VMScore
CVE-2021-41183
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `*Text...
Jqueryui Jquery Ui
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Debian Debian Linux 9.0
Drupal Drupal
Oracle Hospitality Suite8 8.10.2
Oracle Weblogic Server 12.2.1.3.0
Oracle Agile Plm 9.3.6
Oracle Weblogic Server 12.2.1.4.0
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Weblogic Server 14.1.1.0.0
Oracle Banking Platform 2.9.0
384
VMScore
CVE-2021-41184
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option...
Jqueryui Jquery Ui
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Drupal Drupal
Tenable Tenable.sc
Oracle Hospitality Suite8 8.10.2
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Primavera Unifier
Oracle Hospitality Materials Control 18.1
Oracle Agile Plm 9.3.6
Oracle Weblogic Server 12.2.1.4.0
2 Github repositories
445
VMScore
CVE-2008-1438
Unspecified vulnerability in Microsoft Malware Protection Engine (mpengine.dll) 1.1.3520.0 and 0.1.13.192, as used in multiple Microsoft products, allows context-dependent malicious users to cause a denial of service (disk space exhaustion) via a file with "crafted data stru...
Microsoft Malware Protection Engine 1.1.3520.0
Microsoft Windows Defender
Microsoft Diagnostics And Recovery Toolkit 6.0
Microsoft Forefront Client Security
Microsoft Forefront Security For Exchange Server
Microsoft Forefront Security For Sharepoint
Microsoft Malware Protection Engine 0.1.13.192
Microsoft Antigen For Exchange
Microsoft Antigen For Smtp Gateway
Microsoft Windows Live Onecare
188
VMScore
CVE-2020-1753
A security flaw was found in Ansible Engine, all Ansible 2.7.x versions before 2.7.17, all Ansible 2.8.x versions before 2.8.11 and all Ansible 2.9.x versions before 2.9.7, when managing kubernetes using the k8s module. Sensitive parameters such as passwords and tokens are passed...
Redhat Ansible Tower
Redhat Ansible Engine
Debian Debian Linux 10.0
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Fedoraproject Fedora 32
384
VMScore
CVE-2021-41182
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altFi...
Jqueryui Jquery Ui
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Netapp H300s Firmware -
Debian Debian Linux 9.0
Drupal Drupal
Oracle Hospitality Suite8 8.10.2
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 17.7
Oracle Primavera Unifier 17.8
Oracle Primavera Unifier 17.9
Oracle Primavera Unifier 17.10
Oracle Primavera Unifier 17.11
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »