Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
CVE-2021-35587 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021–35587
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: OpenSSO Agent). Supported versions that are affected are 11.1.2.3.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via...
Oracle Access Manager 11.1.2.3.0
Oracle Access Manager 12.2.1.3.0
Oracle Access Manager 12.2.1.4.0
7 Github repositories available
9.8
CVSSv3
CVE-2021-35587
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: OpenSSO Agent). Supported versions that are affected are 11.1.2.3.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via...
Oracle Access Manager 11.1.2.3.0
Oracle Access Manager 12.2.1.3.0
Oracle Access Manager 12.2.1.4.0
7 Github repositories available
7.5
CVSSv3
CVE-2020-35587
** DISPUTED ** In Solstice Pod before 3.0.3, the firmware can easily be decompiled/disassembled. The decompiled/disassembled files contain non-obfuscated code. NOTE: it is unclear whether lack of obfuscation is directly associated with a negative impact, or instead only...
Mersive Solstice Firmware
2 Github repositories available
9.8
CVSSv3
CVE-2022-25064
TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a remote code execution (RCE) vulnerability via the function oal_wan6_setIpAddr....
Tp-link Tl-wr840n Firmware 6.20 180709
5 Github repositories available
10
CVSSv3
CVE-2021-44228
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
Siemens Desigo Cc Info Center 5.0
Siemens Desigo Cc Info Center 5.1
Siemens Desigo Cc Advanced Reports 4.1
Siemens Desigo Cc Advanced Reports 4.2
Siemens Desigo Cc Advanced Reports 5.0
Siemens Desigo Cc Advanced Reports 5.1
Siemens Desigo Cc Advanced Reports 4.0
Siemens Comos
Siemens Captial 2019.1
Siemens Navigator
Siemens Xpedition Package Integrator -
Siemens Xpedition Enterprise -
Siemens Vesys 2019.1
Siemens Vesys
Siemens Teamcenter
Siemens Spectrum Power 7 2.30
Siemens Spectrum Power 7
Siemens Solid Edge Harness Design 2020
Siemens Solid Edge Harness Design
Siemens Solid Edge Cam Pro
Siemens Siveillance Viewpoint
Siemens Siveillance Vantage
Siemens Siguard Dsa 4.3
Siemens Siguard Dsa 4.4
Siemens Siguard Dsa 4.2
Siemens Sentron Powermanager 4.2
Siemens Sentron Powermanager 4.1
Siemens Operation Scheduler
Siemens Nx
Siemens Opcenter Intelligence
Siemens Mindsphere
Siemens Mendix
Siemens Industrial Edge Management Hub
Siemens Industrial Edge Management
Siemens Captial
Intel Audio Development Kit -
Intel System Debugger -
Intel Secure Device Onboard -
Intel Oneapi Sample Browser -
Intel Sensor Solution Firmware Development Kit -
Intel Computer Vision Annotation Tool -
Intel Genomics Kernel Library -
Intel System Studio -
Intel Data Center Manager
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Sonicwall Email Security
Netapp Oncommand Insight -
Netapp Cloud Insights -
Netapp Active Iq Unified Manager -
Netapp Cloud Manager -
Netapp Cloud Secure Agent -
Netapp Ontap Tools -
Netapp Snapcenter -
Cisco Unified Communications Manager Im And Presence Service 11.5\\(1\\)
Cisco Unified Customer Voice Portal 11.6
Cisco Webex Meetings Server
Cisco Packaged Contact Center Enterprise 11.6\\(1\\)
Cisco Webex Meetings Server 3.0
Cisco Identity Services Engine
Cisco Data Center Network Manager
Cisco Webex Meetings Server 4.0
Cisco Unified Contact Center Express
Cisco Data Center Network Manager 11.3\\(1\\)
Cisco Identity Services Engine 2.4.0
Cisco Finesse
Cisco Finesse 12.6\\(1\\)
Cisco Nexus Dashboard
Cisco Network Services Orchestrator
Cisco Iot Operations Dashboard -
Cisco Intersight Virtual Appliance
Cisco Evolved Programmable Network Manager
Cisco Dna Spaces\\ Connector
Cisco Cyber Vision Sensor Management Extension
Cisco Crosswork Zero Touch Provisioning
Cisco Crosswork Zero Touch Provisioning 3.0.0
Cisco Crosswork Platform Infrastructure
Cisco Crosswork Platform Infrastructure 4.1.0
Cisco Crosswork Optimization Engine
Cisco Crosswork Optimization Engine 3.0.0
Cisco Crosswork Network Controller 3.0.0
Cisco Crosswork Network Controller
Cisco Crosswork Data Gateway 3.0.0
Cisco Crosswork Data Gateway
Cisco Common Services Platform Collector
Cisco Cloudcenter
Cisco Cloudcenter Workload Manager
Cisco Cloudcenter Suite Admin
Cisco Cloudcenter Cost Optimizer
Cisco Business Process Automation
Cisco Automated Subsea Tuning
Cisco Nexus Insights
Cisco Advanced Malware Protection Virtual Private Cloud Appliance
Cisco Customer Experience Cloud Agent
Cisco Workload Optimization Manager
Cisco Ucs Central
Cisco Ucs Director
Cisco Sd-wan Vmanage
Cisco Optical Network Controller
Cisco Fog Director -
Cisco Dna Center
Cisco Integrated Management Controller Supervisor
Cisco Wan Automation Engine
Cisco Virtualized Infrastructure Manager
Cisco Network Assurance Engine
Cisco Virtual Topology System
Cisco Smart Phy
Cisco Prime Service Catalog
Cisco Connected Mobile Experiences -
Cisco Video Surveillance Operations Manager
Cisco Unity Connection
Cisco Virtualized Voice Browser
Cisco Unified Workforce Optimization
Cisco Unified Sip Proxy
Cisco Unified Intelligence Center
Cisco Unified Customer Voice Portal
Cisco Unified Customer Voice Portal 12.0
Cisco Unified Customer Voice Portal 12.5
Cisco Unified Contact Center Enterprise
Cisco Unified Contact Center Enterprise 11.6\\(2\\)
Cisco Unified Communications Manager Im And Presence Service
Cisco Unified Communications Manager
Cisco Unified Communications Manager 11.5\\(1\\)su3
Cisco Unified Communications Manager 11.5\\(1\\)
Cisco Paging Server
Cisco Packaged Contact Center Enterprise
Cisco Enterprise Chat And Email
Cisco Emergency Responder
Cisco Contact Center Management Portal
Cisco Contact Center Domain Manager
Cisco Cloud Connect
Cisco Broadworks
Cisco Fxos 6.2.3
Cisco Fxos 6.3.0
Cisco Fxos 6.4.0
Cisco Fxos 6.5.0
Cisco Fxos 6.6.0
Cisco Fxos 6.7.0
Cisco Fxos 7.0.0
Cisco Fxos 7.1.0
Cisco Prime Service Catalog 12.1
Cisco Firepower Threat Defense 6.2.3
Cisco Firepower Threat Defense 6.4.0
Cisco Firepower Threat Defense 6.3.0
Cisco Unity Connection 11.5
Cisco Firepower Threat Defense 6.5.0
Cisco Firepower Threat Defense 6.6.0
Cisco Sd-wan Vmanage 20.3
Cisco Sd-wan Vmanage 20.6
Cisco Sd-wan Vmanage 20.5
Cisco Cyber Vision Sensor Management Extension 4.0.2
Cisco Dna Spaces Connector -
Cisco Unified Sip Proxy 010.002\\(001\\)
Cisco Unified Sip Proxy 010.002\\(000\\)
Cisco Unified Sip Proxy 010.000\\(001\\)
Cisco Unified Sip Proxy 010.000\\(000\\)
Cisco Unified Intelligence Center 12.6\\(2\\)
Cisco Unified Intelligence Center 12.6\\(1\\)
Cisco Unified Customer Voice Portal 12.6\\(1\\)
Cisco Unified Customer Voice Portal 12.5\\(1\\)
Cisco Unified Customer Voice Portal 12.0\\(1\\)
Cisco Unified Customer Voice Portal 11.6\\(1\\)
Cisco Unified Contact Center Express 12.5\\(1\\)
Cisco Unified Communications Manager Im \\& Presence Service 11.5\\(1.22900.6\\)
Cisco Unified Communications Manager Im \\& Presence Service 11.5\\(1\\)
Cisco Unified Communications Manager 11.5\\(1.22900.28\\)
Cisco Unified Communications Manager 11.5\\(1.21900.40\\)
Cisco Unified Communications Manager 11.5\\(1.18900.97\\)
Cisco Unified Communications Manager 11.5\\(1.18119.2\\)
Cisco Unified Communications Manager 11.5\\(1.17900.52\\)
Cisco Paging Server 9.1\\(1\\)
Cisco Paging Server 9.0\\(2\\)
Cisco Paging Server 9.0\\(1\\)
Cisco Paging Server 8.5\\(1\\)
Cisco Paging Server 8.4\\(1\\)
Cisco Paging Server 8.3\\(1\\)
Cisco Paging Server 14.0\\(1\\)
Cisco Paging Server 12.5\\(2\\)
Cisco Unified Contact Center Enterprise 12.6\\(2\\)
Cisco Unified Contact Center Enterprise 12.6\\(1\\)
Cisco Unified Contact Center Enterprise 12.5\\(1\\)
Cisco Unified Contact Center Enterprise 12.0\\(1\\)
Cisco Finesse 12.5\\(1\\)
Cisco Enterprise Chat And Email 12.6\\(1\\)
Cisco Enterprise Chat And Email 12.5\\(1\\)
Cisco Enterprise Chat And Email 12.0\\(1\\)
Cisco Emergency Responder 11.5\\(4.66000.14\\)
Cisco Emergency Responder 11.5\\(4.65000.14\\)
Cisco Emergency Responder 11.5
Cisco Unified Contact Center Management Portal 12.6\\(1\\)
Cisco Unified Contact Center Express 12.6\\(2\\)
Cisco Unified Contact Center Express 12.6\\(1\\)
Cisco Broadworks -
Cisco Unified Computing System 006.008\\(001.000\\)
Cisco Ucs Central Software 2.0\\(1l\\)
Cisco Ucs Central Software 2.0\\(1k\\)
Cisco Ucs Central Software 2.0\\(1h\\)
Cisco Ucs Central Software 2.0\\(1g\\)
Cisco Ucs Central Software 2.0\\(1f\\)
Cisco Ucs Central Software 2.0\\(1e\\)
Cisco Ucs Central Software 2.0\\(1d\\)
Cisco Ucs Central Software 2.0\\(1c\\)
Cisco Ucs Central Software 2.0\\(1b\\)
Cisco Ucs Central Software 2.0\\(1a\\)
Cisco Ucs Central Software 2.0
Cisco Integrated Management Controller Supervisor 2.3.2.0
Cisco Integrated Management Controller Supervisor 002.003\\(002.000\\)
Cisco Sd-wan Vmanage 20.6.1
Cisco Sd-wan Vmanage 20.8
Cisco Sd-wan Vmanage 20.7
Cisco Sd-wan Vmanage 20.4
Cisco Optical Network Controller 1.1
Cisco Network Assurance Engine 6.0\\(2.1912\\)
Cisco Dna Center 2.2.2.8
Cisco Wan Automation Engine 7.6
Cisco Wan Automation Engine 7.5
Cisco Wan Automation Engine 7.4
Cisco Wan Automation Engine 7.3
Cisco Wan Automation Engine 7.2.3
Cisco Wan Automation Engine 7.2.2
Cisco Wan Automation Engine 7.2.1
Cisco Wan Automation Engine 7.1.3
Cisco Virtual Topology System 2.6.6
Cisco Smart Phy 3.2.1
Cisco Smart Phy 3.1.5
Cisco Smart Phy 3.1.4
Cisco Smart Phy 3.1.3
Cisco Smart Phy 3.1.2
Cisco Smart Phy 21.3
Cisco Network Services Orchestrator -
Cisco Intersight Virtual Appliance 1.0.9-343
Cisco Evolved Programmable Network Manager 5.1
Cisco Evolved Programmable Network Manager 5.0
Cisco Evolved Programmable Network Manager 4.1
Cisco Evolved Programmable Network Manager 4.0
Cisco Evolved Programmable Network Manager 3.1
Cisco Evolved Programmable Network Manager 3.0
Cisco Network Dashboard Fabric Controller 11.5\\(3\\)
Cisco Network Dashboard Fabric Controller 11.5\\(2\\)
Cisco Network Dashboard Fabric Controller 11.5\\(1\\)
Cisco Network Dashboard Fabric Controller 11.4\\(1\\)
Cisco Network Dashboard Fabric Controller 11.3\\(1\\)
Cisco Network Dashboard Fabric Controller 11.2\\(1\\)
Cisco Network Dashboard Fabric Controller 11.1\\(1\\)
Cisco Network Dashboard Fabric Controller 11.0\\(1\\)
Cisco Video Surveillance Manager 7.14\\(4.018\\)
Cisco Video Surveillance Manager 7.14\\(3.025\\)
Cisco Video Surveillance Manager 7.14\\(2.26\\)
Cisco Video Surveillance Manager 7.14\\(1.26\\)
Cisco Unified Workforce Optimization 11.5\\(1\\)
Cisco Unity Connection 11.5\\(1.10000.6\\)
Cisco Cloudcenter Suite 5.3\\(0\\)
Cisco Cloudcenter Suite 5.5\\(0\\)
Cisco Cloudcenter Suite 5.4\\(1\\)
Cisco Automated Subsea Tuning 02.01.00
Cisco Identity Services Engine 003.002\\(000.116\\)
Cisco Identity Services Engine 003.001\\(000.518\\)
Cisco Identity Services Engine 003.000\\(000.458\\)
Cisco Identity Services Engine 002.007\\(000.356\\)
Cisco Identity Services Engine 002.006\\(000.156\\)
Cisco Identity Services Engine 002.004\\(000.914\\)
Cisco Firepower Threat Defense 7.1.0
Cisco Firepower Threat Defense 7.0.0
Cisco Firepower Threat Defense 6.7.0
Cisco Network Insights For Data Center 6.0\\(2.1914\\)
Cisco Cx Cloud Agent 001.012
Cisco Mobility Services Engine -
Cisco Cloudcenter Suite 5.5\\(1\\)
Cisco Cloudcenter Suite 4.10\\(0.15\\)
Cisco Dna Spaces -
Cisco Cyber Vision 4.0.2
Cisco Connected Analytics For Network Deployment 7.3
Cisco Connected Analytics For Network Deployment 008.000.000.000.004
Cisco Connected Analytics For Network Deployment 008.000.000
Cisco Connected Analytics For Network Deployment 007.003.003
Cisco Connected Analytics For Network Deployment 007.003.001.001
Cisco Connected Analytics For Network Deployment 007.003.000
Cisco Connected Analytics For Network Deployment 007.002.000
Cisco Connected Analytics For Network Deployment 007.001.000
Cisco Connected Analytics For Network Deployment 007.000.001
Cisco Connected Analytics For Network Deployment 006.005.000.000
Cisco Connected Analytics For Network Deployment 006.005.000.
Cisco Connected Analytics For Network Deployment 006.004.000.003
Cisco Crosswork Network Automation 4.1.1
Cisco Crosswork Network Automation 4.1.0
Cisco Crosswork Network Automation -
Cisco Crosswork Network Automation 3.0.0
Cisco Crosswork Network Automation 2.0.0
Cisco Common Services Platform Collector 002.010\\(000.000\\)
Cisco Common Services Platform Collector 002.009\\(001.002\\)
Cisco Common Services Platform Collector 002.009\\(001.001\\)
Cisco Common Services Platform Collector 002.009\\(001.000\\)
Cisco Common Services Platform Collector 002.009\\(000.002\\)
Cisco Common Services Platform Collector 002.009\\(000.001\\)
Cisco Common Services Platform Collector 002.009\\(000.000\\)
Snowsoftware Vm Access Proxy
Snowsoftware Snow Commander
Bentley Synchro 4d
Bentley Synchro
Percussion Rhythmyx
57 Github repositories available
24 Articles available
8.8
CVSSv3
CVE-2021-21974
OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG) has a heap-overflow vulnerability. A malicious actor residing within the same network segment as ESXi who has access to port 427 may be able to trigger the...
Vmware Cloud Foundation
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Esxi 7.0.0
9 Github repositories available
7 Articles available
9.8
CVSSv3
CVE-2021-21972
The vSphere Client (HTML5) contains a remote code execution vulnerability in a vCenter Server plugin. A malicious actor with network access to port 443 may exploit this issue to execute commands with unrestricted privileges on the underlying operating system that hosts vCenter...
Vmware Vcenter Server 6.5
Vmware Vcenter Server 6.7
Vmware Cloud Foundation
Vmware Vcenter Server 7.0
85 Github repositories available
10 Articles available
10
CVSSv3
CVE-2022-22947
In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured. A remote attacker could make a maliciously crafted request that could allow arbitrary remote...
Vmware Spring Cloud Gateway 3.1.0
Vmware Spring Cloud Gateway
Oracle Commerce Guided Search 11.3.2
Oracle Communications Cloud Native Core Network Slice Selection Function 1.8.0
Oracle Communications Cloud Native Core Network Slice Selection Function 22.1.0
Oracle Communications Cloud Native Core Network Repository Function 1.15.0
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 1.10.0
Oracle Communications Cloud Native Core Network Exposure Function 22.1.0
Oracle Communications Cloud Native Core Service Communication Proxy 1.15.0
Oracle Communications Cloud Native Core Network Repository Function 1.15.1
Oracle Communications Cloud Native Core Binding Support Function 1.11.0
Oracle Communications Cloud Native Core Binding Support Function 22.1.3
Oracle Communications Cloud Native Core Network Repository Function 22.2.0
Oracle Communications Cloud Native Core Security Edge Protection Proxy 22.1.1
Oracle Communications Cloud Native Core Console 22.2.0
Oracle Communications Cloud Native Core Network Repository Function 22.1.2
89 Github repositories available
7 Articles available
10
CVSSv3
CVE-2021-22205
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution....
Gitlab Gitlab
59 Github repositories available
1 Article available
9.8
CVSSv3
CVE-2021-45456
Apache kylin checks the legitimacy of the project before executing some commands with the project name passed in by the user. There is a mismatch between what is being checked and what is being used as the shell command argument in DiagnosisService. This may cause an illegal...
Apache Kylin 4.0.0
1 Github repository available
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2023-21068
CVE-2023-21077
unspecified
CVE-2023-21070
CVE-2023-21016
file upload
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »
Vulmon