Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
Recent vulnerabilities and exploits
9.8
CVSSv3
CVE-2024-6914
An incorrect authorization vulnerability exists in multiple WSO2 products due to a business logic flaw in the account recovery-related SOAP admin service. A malicious actor can exploit this vulnerability to reset the password of any user account, leading to a complete account tak...
Wso2 Wso2 Api Manager
Wso2 Wso2 Governance Registry
Wso2 Wso2 Identity Server
Wso2 Wso2 Identity Server As Key Manager
Wso2 Wso2 Iot
Wso2 Wso2 Open Banking Am
Wso2 Wso2 Open Banking Km
Wso2 Wso2 Open Banking Iam
Wso2 Wso2 Carbon Identity Management
NA
CVE-2024-41197
An issue in Ocuco Innovation - INVCLIENT.EXE v2.10.24.5 allows malicious users to bypass authentication and escalate privileges to Administrator via a crafted TCP packet.
NA
CVE-2024-41196
An issue in Ocuco Innovation - REPORTSERVER.EXE v2.10.24.13 allows malicious users to bypass authentication and escalate privileges to Administrator via a crafted TCP packet.
7.2
CVSSv3
CVE-2024-41199
An issue in Ocuco Innovation - JOBMANAGER.EXE v2.10.24.16 allows malicious users to bypass authentication and escalate privileges to Administrator via a crafted TCP packet.
NA
CVE-2024-41195
An issue in Ocuco Innovation - INNOVASERVICEINTF.EXE v2.10.24.17 allows malicious users to bypass authentication and escalate privileges to Administrator via a crafted TCP packet.
6.5
CVSSv3
CVE-2024-48848
Large content vulnerabilities are present in ASPECT exposing a device to disk overutilization on a system if administrator credentials become compromisedThis issue affects ASPECT-Enterprise: up to and including 3.*; NEXUS Series: up to and including 3.*; MATRIX Series: up to and ...
Abb Aspect-enterprise
Abb Nexus Series
Abb Matrix Series
NA
CVE-2024-41198
An issue in Ocuco Innovation - REPORTS.EXE v2.10.24.13 allows malicious users to bypass authentication and escalate privileges to Administrator via a crafted TCP packet.
NA
CVE-2024-40462
An issue in Ocuco Innovation v.2.10.24.51 allows a local malicious user to escalate privileges via the SETTINGSVATIGATOR.EXE component
NA
CVE-2024-40459
An issue in Ocuco Innovation APPMANAGER.EXE v.2.10.24.51 allows a local malicious user to escalate privileges via the application manager function
4.8
CVSSv3
CVE-2024-13958
Stored Cross Site Scripting vulnerabilities exist in ASPECT if administrator creden-tials become compromisedThis issue affects ASPECT-Enterprise: up to and including 3.*; NEXUS Series: up to and including 3.*; MATRIX Series: up to and including 3.*.
Abb Aspect-enterprise
Abb Nexus Series
Abb Matrix Series
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
asterisk
wire-webapp
CVE-2025-4692
cyberdava
CVE-2024-13950
CVE-2025-40775
mobile dynamix
CVE-2024-13949
CVE-2024-13948
CVE-2025-4664
remote attackers
unauthorized
hard-coded
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »