Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
next generation security vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2019-6147
Forcepoint NGFW Security Management Center (SMC) versions lower than 6.5.12 or 6.7.1 have a rare issue that in specific circumstances can corrupt the internal configuration database. When the database is corrupted, the SMC might produce an incorrect IPsec configuration for the Fo...
Forcepoint Next Generation Firewall Security Management Center
5.4
CVSSv3
CVE-2017-1278
IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0 and 6.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 124756.
Ibm Rational Doors Next Generation 5.0.0
Ibm Rational Doors Next Generation 5.0.1
Ibm Rational Doors Next Generation 5.0.2
Ibm Rational Doors Next Generation 6.0.0
Ibm Rational Doors Next Generation 6.0.3
Ibm Rational Doors Next Generation 6.0.2
Ibm Rational Requirements Composer 4.0.2
Ibm Rational Requirements Composer 4.0.7
Ibm Rational Doors Next Generation 5.0
Ibm Rational Doors Next Generation 6.0.1
Ibm Rational Requirements Composer 4.0.1
Ibm Rational Requirements Composer 4.0.3
Ibm Rational Requirements Composer 4.0.4
Ibm Rational Requirements Composer 4.0.5
Ibm Rational Requirements Composer 4.0.6
9.8
CVSSv3
CVE-2021-43616
The npm ci command in npm 7.x and 8.x up to and including 8.1.3 proceeds with an installation even if dependency information in package-lock.json differs from package.json. This behavior is inconsistent with the documentation, and makes it easier for malicious users to install ma...
Npmjs Npm
Netapp Next Generation Application Programming Interface -
Fedoraproject Fedora 35
1 Github repository
7.8
CVSSv3
CVE-2017-12243
A vulnerability in the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series Next-Generation Firewall (NGFW), and Cisco Firepower 9300 Security Appliance could allow an authenticated, local malicious user to obtain root shell privileges on the device, aka Comm...
Cisco Unified Computing System Manager Firmware -
Cisco Firepower 9300 Security Appliance Firmware -
Cisco Firepower 4100 Next-generation Firewall Firmware -
1 EDB exploit
6.5
CVSSv3
CVE-2020-4732
IBM Jazz Foundation and IBM Engineering products could allow an authenticated user to obtain sensitive information due to lack of security restrictions. IBM X-Force ID: 188126.
Ibm Rational Doors Next Generation 6.0.6.1
Ibm Rational Doors Next Generation 6.0.6
Ibm Rational Quality Manager 6.0.6
Ibm Rational Quality Manager 6.0.6.1
Ibm Collaborative Lifecycle Management 6.0.6
Ibm Collaborative Lifecycle Management 6.0.6.1
Ibm Engineering Test Management 7.0.0
Ibm Rational Engineering Lifecycle Manager 6.0.6
Ibm Rational Engineering Lifecycle Manager 6.0.6.1
Ibm Engineering Lifecycle Management 7.0
Ibm Engineering Lifecycle Management 7.0.1
Ibm Engineering Lifecycle Management 7.0.2
Ibm Engineering Lifecycle Optimization - Engineering Insights 7.0
Ibm Engineering Lifecycle Optimization - Engineering Insights 7.0.1
Ibm Engineering Lifecycle Optimization - Engineering Insights 7.0.2
Ibm Engineering Lifecycle Optimization - Publishing 7.0
Ibm Engineering Lifecycle Optimization - Publishing 7.0.1
Ibm Engineering Lifecycle Optimization - Publishing 7.0.2
Ibm Engineering Test Management 7.0.1
Ibm Rational Doors Next Generation 7.0
Ibm Rational Doors Next Generation 7.0.1
Ibm Rational Doors Next Generation 7.0.2
8.8
CVSSv3
CVE-2020-4495
IBM Jazz Foundation and IBM Engineering products could allow a remote malicious user to bypass security restrictions, caused by improper access control. By sending a specially-crafted request to the REST API, an attacker could exploit this vulnerability to bypass access restricti...
Ibm Rational Doors Next Generation 6.0.6.1
Ibm Rational Doors Next Generation 6.0.6
Ibm Rational Quality Manager 6.0.6
Ibm Rational Quality Manager 6.0.6.1
Ibm Collaborative Lifecycle Management 6.0.6
Ibm Collaborative Lifecycle Management 6.0.6.1
Ibm Engineering Test Management 7.0.0
Ibm Rational Engineering Lifecycle Manager 6.0.6
Ibm Rational Engineering Lifecycle Manager 6.0.6.1
Ibm Engineering Lifecycle Management 7.0
Ibm Engineering Lifecycle Management 7.0.1
Ibm Engineering Lifecycle Management 7.0.2
Ibm Engineering Lifecycle Optimization - Engineering Insights 7.0
Ibm Engineering Lifecycle Optimization - Engineering Insights 7.0.1
Ibm Engineering Lifecycle Optimization - Engineering Insights 7.0.2
Ibm Engineering Lifecycle Optimization - Publishing 7.0
Ibm Engineering Lifecycle Optimization - Publishing 7.0.1
Ibm Engineering Lifecycle Optimization - Publishing 7.0.2
Ibm Engineering Test Management 7.0.1
Ibm Rational Doors Next Generation 7.0
Ibm Rational Doors Next Generation 7.0.1
Ibm Rational Doors Next Generation 7.0.2
5.4
CVSSv3
CVE-2017-1753
Multiple IBM Rational products are vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 135655.
Ibm Rational Rhapsody Design Manager
Ibm Rational Engineering Lifecycle Manager
Ibm Rational Software Architect Design Manager
Ibm Rational Doors Next Generation
Ibm Rational Quality Manager
Ibm Rational Team Concert
4.3
CVSSv3
CVE-2018-1606
IBM Jazz based applications (IBM Rational Collaborative Lifecycle Management 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6, IBM Rational DOORS Next Generation 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6, IBM Rational Engineering Lifecycle Manag...
Ibm Rational Team Concert
Ibm Rational Doors Next Generation
Ibm Rational Engineering Lifecycle Manager
Ibm Rational Quality Manager
Ibm Rational Rhapsody Design Manager
Ibm Rational Software Architect Design Manager
Ibm Rational Collaborative Lifecycle Management
6.1
CVSSv3
CVE-2018-0251
A vulnerability in the Web Server Authentication Required screen of the Clientless Secure Sockets Layer (SSL) VPN portal of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack agains...
Cisco Adaptive Security Appliance Software 9.8\\(2.15\\)
Cisco Adaptive Security Appliance Software 9.9\\(1\\)
5.9
CVSSv3
CVE-2018-1694
IBM Jazz applications (IBM Rational Collaborative Lifecycle Management 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6, IBM Rational DOORS Next Generation 5.0 up to and including 5.02 and 6.0 up to and including 6.0.6, IBM Rational Engineering Lifecycle Manager 5.0...
Ibm Rational Engineering Lifecycle Manager
Ibm Rational Rhapsody Design Manager
Ibm Rational Collaborative Lifecycle Management
Ibm Rational Quality Manager
Ibm Rational Team Concert
Ibm Rational Doors Next Generation
Ibm Rational Software Architect Design Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »