Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security agent vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-23772
Rat.SetString in math/big in Go prior to 1.16.14 and 1.17.x prior to 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption.
Golang Go
Netapp Storagegrid -
Netapp Cloud Insights Telegraf Agent -
Netapp Kubernetes Monitoring Operator -
Netapp Beegfs Csi Driver -
Debian Debian Linux 9.0
5 Github repositories
9.1
CVSSv3
CVE-2022-23806
Curve.IsOnCurve in crypto/elliptic in Go prior to 1.16.14 and 1.17.x prior to 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.
Golang Go
Netapp Storagegrid -
Netapp Cloud Insights Telegraf Agent -
Netapp Kubernetes Monitoring Operator -
Netapp Beegfs Csi Driver -
Debian Debian Linux 9.0
3 Github repositories
8.8
CVSSv3
CVE-2021-1257
A vulnerability in the web-based management interface of Cisco DNA Center Software could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack to manipulate an authenticated user into executing malicious actions without their awaren...
Cisco Dna Center
Mcafee Agent
4.3
CVSSv3
CVE-2019-4330
IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session. IBM X-Force ID: 161210.
Ibm Security Guardium Big Data Intelligence 4.0
NA
CVE-2007-2461
The DHCP relay agent in Cisco Adaptive Security Appliance (ASA) and PIX 7.2 allows remote malicious users to cause a denial of service (dropped packets) via a DHCPREQUEST or DHCPINFORM message that causes multiple DHCPACK messages to be sent from DHCP servers to the agent, which ...
Cisco Pix 7.2
Cisco Adaptive Security Appliance Software 7.2.2
9.8
CVSSv3
CVE-2023-41993
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7.
Apple Macos
Apple Ipados
Apple Iphone Os
Fedoraproject Fedora 37
Fedoraproject Fedora 38
Fedoraproject Fedora 39
Debian Debian Linux 11.0
Debian Debian Linux 12.0
Oracle Jdk 1.8.0
Oracle Jre 1.8.0
Oracle Graalvm 21.3.9
Oracle Graalvm 20.3.13
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
7 Github repositories
2 Articles
7.8
CVSSv3
CVE-2022-29149
Azure Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability
Microsoft Azure Automation State Configuration -
Microsoft Azure Automation Update Management -
Microsoft Container Monitoring Solution -
Microsoft Log Analytics Agent -
Microsoft System Center Operations Manager 2016
Microsoft System Center Operations Manager 2019
Microsoft System Center Operations Manager 2022
Microsoft Azure Security Center
Microsoft Azure Sentinel
Microsoft Azure Stack Hub
Microsoft Azure Diagnostics
Microsoft Open Management Infrastructure
9.8
CVSSv3
CVE-2016-7955
The logcheck function in session.inc in AlienVault OSSIM prior to 5.3.1, when an action has been created, and USM prior to 5.3.1 allows remote malicious users to bypass authentication and consequently obtain sensitive information, modify the application, or execute arbitrary code...
Alienvault Unified Security Management
Alienvault Ossim
7.5
CVSSv3
CVE-2018-15766
On install, Dell Encryption versions prior 10.0.1 and Dell Endpoint Security Suite Enterprise versions prior 2.0.1 will overwrite and manually set the "Minimum Password Length" group policy object to a value of 1 on that device. This allows for users to bypass any exist...
Dell Endpoint Security Suite Enterprise
Dell Encryption
NA
CVE-2006-3838
Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) prior to 2.5.0, as used in products including (a) Sidewinder, (b) iPolicy Security Manager, (c) Astaro Report Manager, (d) Fortinet FortiReporter, (e) Top Layer Network Security Analyzer, and ...
Eiqnetworks Enterprise Security Analyzer
6 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »