Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Recent vulnerabilities and exploits

9.8
CVSSv3

CVE-2024-6914

An incorrect authorization vulnerability exists in multiple WSO2 products due to a business logic flaw in the account recovery-related SOAP admin service. A malicious actor can exploit this vulnerability to reset the password of any user account, leading to a complete account tak...
Wso2 Wso2 Api ManagerWso2 Wso2 Governance RegistryWso2 Wso2 Identity ServerWso2 Wso2 Identity Server As Key ManagerWso2 Wso2 IotWso2 Wso2 Open Banking AmWso2 Wso2 Open Banking KmWso2 Wso2 Open Banking IamWso2 Wso2 Carbon Identity Management
NA

CVE-2024-41197

An issue in Ocuco Innovation - INVCLIENT.EXE v2.10.24.5 allows malicious users to bypass authentication and escalate privileges to Administrator via a crafted TCP packet.
NA

CVE-2024-41196

An issue in Ocuco Innovation - REPORTSERVER.EXE v2.10.24.13 allows malicious users to bypass authentication and escalate privileges to Administrator via a crafted TCP packet.
7.2
CVSSv3

CVE-2024-41199

An issue in Ocuco Innovation - JOBMANAGER.EXE v2.10.24.16 allows malicious users to bypass authentication and escalate privileges to Administrator via a crafted TCP packet.
NA

CVE-2024-41195

An issue in Ocuco Innovation - INNOVASERVICEINTF.EXE v2.10.24.17 allows malicious users to bypass authentication and escalate privileges to Administrator via a crafted TCP packet.
6.5
CVSSv3

CVE-2024-48848

Large content vulnerabilities are present in ASPECT exposing a device to disk overutilization on a system if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: up to and including 3.*; NEXUS Series: up to and including 3.*; MATRIX Series: up to and ...
Abb Aspect-enterpriseAbb Nexus SeriesAbb Matrix Series
NA

CVE-2024-41198

An issue in Ocuco Innovation - REPORTS.EXE v2.10.24.13 allows malicious users to bypass authentication and escalate privileges to Administrator via a crafted TCP packet.
NA

CVE-2024-40462

An issue in Ocuco Innovation v.2.10.24.51 allows a local malicious user to escalate privileges via the SETTINGSVATIGATOR.EXE component
NA

CVE-2024-40459

An issue in Ocuco Innovation APPMANAGER.EXE v.2.10.24.51 allows a local malicious user to escalate privileges via the application manager function
4.8
CVSSv3

CVE-2024-13958

Stored Cross Site Scripting vulnerabilities exist in ASPECT if administrator creden-tials become compromisedThis issue affects ASPECT-Enterprise: up to and including 3.*; NEXUS Series: up to and including 3.*; MATRIX Series: up to and including 3.*.
Abb Aspect-enterpriseAbb Nexus SeriesAbb Matrix Series
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
asteriskwire-webappCVE-2025-4692cyberdavaCVE-2024-13950CVE-2025-40775mobile dynamixCVE-2024-13949CVE-2024-13948CVE-2025-4664remote attackersunauthorizedhard-coded
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook