Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
access manager vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2018-12480
Mitigates an XSS issue in NetIQ Access Manager versions before 4.4 SP3.
Microfocus Access Manager 4.4
Microfocus Access Manager 4.3
Microfocus Access Manager 4.2
Microfocus Access Manager 4.1
516
VMScore
CVE-2018-2587
Vulnerability in the Oracle Access Manager component of Oracle Fusion Middleware (subcomponent: Web Server Plugin). Supported versions that are affected are 10.1.4.3.0, 11.1.2.3.0 and 12.2.1.3.0. Difficult to exploit vulnerability allows unauthenticated attacker with network acce...
Oracle Access Manager 10.1.4.3.0
Oracle Access Manager 11.1.2.3.0
Oracle Access Manager 12.2.1.3.0
Oracle Adaptive Access Manager 11.1.2.3.0
409
VMScore
CVE-2022-29263
On F5 BIG-IP APM 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5.1, 14.1.x versions before 14.1.4.6, 13.1.x versions before 13.1.5, and all versions of 12.1.x and 11.6.x, as well as F5 BIG-IP APM Clients 7.x versions before 7.2.1.5, the BIG-IP Edge Client Component...
F5 Big-ip Access Policy Manager 12.1.2
F5 Big-ip Access Policy Manager 12.1.1
F5 Big-ip Access Policy Manager 12.1.0
F5 Big-ip Access Policy Manager 11.6.1
F5 Big-ip Access Policy Manager 13.1.0
F5 Big-ip Access Policy Manager 14.1.0
F5 Big-ip Access Policy Manager 15.1.0
F5 Big-ip Access Policy Manager 14.1.4
F5 Big-ip Access Policy Manager 16.1.0
F5 Big-ip Access Policy Manager 17.0.0
F5 Big-ip Access Policy Manager 11.6.3
F5 Big-ip Access Policy Manager 11.6.4
F5 Big-ip Access Policy Manager 11.6.5
F5 Big-ip Access Policy Manager 12.1.3
F5 Big-ip Access Policy Manager 12.1.4
F5 Big-ip Access Policy Manager 12.1.5
F5 Big-ip Access Policy Manager 12.1.6
F5 Big-ip Access Policy Manager 13.1.1
F5 Big-ip Access Policy Manager 13.1.3
F5 Big-ip Access Policy Manager 13.1.4
F5 Big-ip Access Policy Manager 13.1.5
F5 Big-ip Access Policy Manager 14.1.2
668
VMScore
CVE-2015-4963
IBM Security Access Manager for Web 7.x prior to 7.0.0.16 and 8.x prior to 8.0.1.3 mishandles WebSEAL HTTPTransformation requests, which allows remote malicious users to read or write to arbitrary files via unspecified vectors.
Ibm Security Access Manager For Web 7.0.0.6
Ibm Security Access Manager For Web 7.0.0.7
Ibm Security Access Manager For Web 7.0.0.14
Ibm Security Access Manager For Web 7.0.0.2
Ibm Security Access Manager For Web 7.0.0.3
Ibm Security Access Manager For Web 7.0.0.10
Ibm Security Access Manager For Web 7.0.0.11
Ibm Security Access Manager For Web 8.0.0.3
Ibm Security Access Manager For Web 8.0.0.4
Ibm Security Access Manager For Web 7.0.0.4
Ibm Security Access Manager For Web 7.0.0.5
Ibm Security Access Manager For Web 7.0.0.12
Ibm Security Access Manager For Web 7.0.0.13
Ibm Security Access Manager For Web 8.0.0.5
Ibm Security Access Manager For Web 8.0.0.22
Ibm Security Access Manager For Web 7.0.0.15
Ibm Security Access Manager For Web 8.0.0.31
Ibm Security Access Manager For Web 8.0.1.0
Ibm Security Access Manager For Web 7.0.0.1
Ibm Security Access Manager For Web 7.0.0.8
Ibm Security Access Manager For Web 7.0.0.9
Ibm Security Access Manager For Web 7.0
668
VMScore
CVE-2011-0322
Unspecified vulnerability in EMC RSA Access Manager Server 5.5.x, 6.0.x, and 6.1.x allows remote malicious users to access resources via unknown vectors.
Rsa Access Manager Server 5.5.3
Rsa Access Manager Server 6.1.2
Rsa Access Manager Server 6.1.3
Rsa Access Manager Server 6.0.4
Rsa Access Manager Server 6.1
383
VMScore
CVE-2016-3018
IBM Security Access Manager for Web is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Security Access Manager For Web 8.0.0.3
Ibm Security Access Manager For Web 8.0.0.2
Ibm Security Access Manager For Mobile 8.0.0.3
Ibm Security Access Manager For Mobile 8.0.0.2
Ibm Security Access Manager For Web 8.0.1.3
Ibm Security Access Manager For Web 8.0.1.2
Ibm Security Access Manager For Mobile 8.0.1.4
Ibm Security Access Manager For Mobile 8.0.1.3
Ibm Security Access Manager 9.0.0.1
Ibm Security Access Manager 9.0.0
Ibm Security Access Manager For Web 8.0.1.0
Ibm Security Access Manager For Web 8.0.0.5
Ibm Security Access Manager For Mobile 8.0.1.2
Ibm Security Access Manager For Mobile 8.0.1.0
Ibm Security Access Manager For Mobile 8.0.0.5
Ibm Security Access Manager 9.0.1.0
Ibm Security Access Manager For Web 8.0.1.4
Ibm Security Access Manager For Web 8.0.0.1
Ibm Security Access Manager For Web 8.0.0.0
Ibm Security Access Manager For Mobile 8.0.0.1
Ibm Security Access Manager For Mobile 8.0.0.0
383
VMScore
CVE-2016-3045
IBM Security Access Manager for Web stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referer header or browser history.
Ibm Security Access Manager For Web 7.0.0
Ibm Security Access Manager For Web 8.0.1.2
Ibm Security Access Manager For Web 8.0.1.1
Ibm Security Access Manager For Web 8.0.1
Ibm Security Access Manager For Web 8.0.0
Ibm Security Access Manager 9.0.1.0
Ibm Security Access Manager 9.0.0
Ibm Security Access Manager For Web 8.0.1.4
Ibm Security Access Manager For Mobile 8.0.1.2
Ibm Security Access Manager For Mobile 8.0.1.3
Ibm Security Access Manager For Mobile 8.0.1.4
Ibm Security Access Manager For Mobile 8.0.0.5
Ibm Security Access Manager For Mobile 8.0.0.0
Ibm Security Access Manager 9.0.0.1
Ibm Security Access Manager For Web 8.0.1.3
Ibm Security Access Manager For Mobile 8.0.1
801
VMScore
CVE-2016-3028
IBM Security Access Manager for Web 7.0 before IF2 and 8.0 prior to 8.0.1.4 IF3 and Security Access Manager 9.0 prior to 9.0.1.0 IF5 allow remote authenticated users to execute arbitrary commands by leveraging LMI admin access.
Ibm Security Access Manager For Web 7.0.0
Ibm Security Access Manager For Web 8.0.0
Ibm Security Access Manager For Web 8.0.0.2
Ibm Security Access Manager 9.0.0
Ibm Security Access Manager 9.0.0.1
Ibm Security Access Manager For Web 8.0.1
Ibm Security Access Manager For Web 8.0.1.2
Ibm Security Access Manager For Web 8.0.0.4
Ibm Security Access Manager For Web 8.0.0.5
Ibm Security Access Manager 9.0.1.0
Ibm Security Access Manager For Web 8.0.1.3
Ibm Security Access Manager For Web 8.0.1.4
516
VMScore
CVE-2018-2739
Vulnerability in the Oracle Access Manager component of Oracle Fusion Middleware (subcomponent: Web Server Plugin). Supported versions that are affected are 10.1.4.3.0, 11.1.2.3.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access...
Oracle Access Manager 10.1.4.3.0
Oracle Access Manager 12.2.1.3.0
Oracle Access Manager 11.1.2.3.0
383
VMScore
CVE-2017-5183
NetIQ Access Manager 4.2.2 and 4.3.x prior to 4.3.1+, when configured as an Identity Server, has XSS in the AssertionConsumerServiceURL field of a signed AuthnRequest in a samlp:AuthnRequest document.
Netiq Access Manager 4.3
Netiq Access Manager 4.3.1
Netiq Access Manager 4.2.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »