Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
access vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-0011
The web portal interface in Citrix Access Gateway (aka Citrix Advanced Access Control) before Advanced Edition 4.5 HF1 places a session ID in the URL, which allows context-dependent malicious users to hijack sessions by reading "residual information", including the a re...
Citrix Access Gateway 4.2
Citrix Access Gateway 4.5
Citrix Access Gateway 4.0
8.8
CVSSv3
CVE-2021-44233
SAP GRC Access Control - versions V1100_700, V1100_731, V1200_750, does not perform necessary authorization checks for an authenticated user, which could lead to escalation of privileges.
Sap Access Control V1100 700
Sap Access Control V1100 731
Sap Access Control V1200 750
NA
CVE-2014-8920
Buffer overflow in the Data Transfer Program in IBM i Access 5770-XE1 5R4, 6.1, and 7.1 on Windows allows local users to gain privileges via unspecified vectors.
Ibm I Access 7.1
Ibm I Access 5r4
Ibm I Access 6.1
6.1
CVSSv3
CVE-2017-5183
NetIQ Access Manager 4.2.2 and 4.3.x prior to 4.3.1+, when configured as an Identity Server, has XSS in the AssertionConsumerServiceURL field of a signed AuthnRequest in a samlp:AuthnRequest document.
Netiq Access Manager 4.3
Netiq Access Manager 4.3.1
Netiq Access Manager 4.2.2
9.3
CVSSv3
CVE-2018-2739
Vulnerability in the Oracle Access Manager component of Oracle Fusion Middleware (subcomponent: Web Server Plugin). Supported versions that are affected are 10.1.4.3.0, 11.1.2.3.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access...
Oracle Access Manager 10.1.4.3.0
Oracle Access Manager 12.2.1.3.0
Oracle Access Manager 11.1.2.3.0
9.8
CVSSv3
CVE-2021-35587
Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: OpenSSO Agent). Supported versions that are affected are 11.1.2.3.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP...
Oracle Access Manager 11.1.2.3.0
Oracle Access Manager 12.2.1.3.0
Oracle Access Manager 12.2.1.4.0
2 Github repositories
NA
CVE-2011-2882
Stack-based buffer overflow in the NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 prior to 8.1-67.7, 9.0 prior to 9.0-70.5, and 9.1 prior to 9.1-96.4 allows remote malicious users to execute arbitrary code via crafted HTTP header da...
Citrix Access Gateway 9.1
Citrix Access Gateway 9.0
Citrix Access Gateway 8.1
1 EDB exploit
NA
CVE-2011-2883
The NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 prior to 8.1-67.7, 9.0 prior to 9.0-70.5, and 9.1 prior to 9.1-96.4 attempts to validate signed DLLs by checking the certificate subject, not the signature, which allows man-in-the-...
Citrix Access Gateway 8.1
Citrix Access Gateway 9.0
Citrix Access Gateway 9.1
6.1
CVSSv3
CVE-2017-1489
IBM Security Access Manager 6.1, 7.0, 8.0, and 9.0 e-community configurations may be affected by a redirect vulnerability. ECSSO Master Authentication can redirect to a server not participating in an e-community domain. IBM X-Force ID: 128687.
Ibm Tivoli Access Manager For E-business 6.1.0.4
Ibm Tivoli Access Manager For E-business 6.1.0.6
Ibm Tivoli Access Manager For E-business 6.1.0.13
Ibm Tivoli Access Manager For E-business 6.1.0.15
Ibm Tivoli Access Manager For E-business 6.1.0.22
Ibm Tivoli Access Manager For E-business 6.1.0.24
Ibm Tivoli Access Manager For E-business 6.1.0.29
Ibm Tivoli Access Manager For E-business 6.1.0.31
Ibm Tivoli Access Manager For E-business 6.1.0
Ibm Tivoli Access Manager For E-business 6.1.0.1
Ibm Tivoli Access Manager For E-business 6.1.0.2
Ibm Tivoli Access Manager For E-business 6.1.0.3
Ibm Tivoli Access Manager For E-business 6.1.0.16
Ibm Tivoli Access Manager For E-business 6.1.0.17
Ibm Tivoli Access Manager For E-business 6.1.0.18
Ibm Tivoli Access Manager For E-business 6.1.0.19
Ibm Tivoli Access Manager For E-business 6.1.0.20
Ibm Tivoli Access Manager For E-business 6.1.0.8
Ibm Tivoli Access Manager For E-business 6.1.0.9
Ibm Tivoli Access Manager For E-business 6.1.0.10
Ibm Tivoli Access Manager For E-business 6.1.0.11
Ibm Tivoli Access Manager For E-business 6.1.0.25
NA
CVE-2013-3970
Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS 7.0r2 up to and including 7.0r8 and 7.1r1 up to and including 7.1r5 and Junos Pulse Access Control Service (aka UAC) with UAC OS 4.1r1 up to and including 4.1r5 include a test Certification Authority (CA) certifi...
Juniper Junos Pulse Secure Access Service 7.0r2
Juniper Junos Pulse Secure Access Service 7.0r3
Juniper Junos Pulse Secure Access Service 7.0r4
Juniper Junos Pulse Secure Access Service 7.0r8
Juniper Junos Pulse Secure Access Service 7.1r1
Juniper Junos Pulse Secure Access Service 7.1r1.1
Juniper Junos Pulse Secure Access Service 7.1r2
Juniper Junos Pulse Secure Access Service 7.0r5.1
Juniper Junos Pulse Secure Access Service 7.0r7
Juniper Junos Pulse Secure Access Service 7.1r3
Juniper Junos Pulse Secure Access Service 7.1r5
Juniper Junos Pulse Secure Access Service 7.0r5
Juniper Junos Pulse Secure Access Service 7.0r6
Juniper Junos Pulse Secure Access Service 7.1r4
Juniper Junos Pulse Access Control Service 4.1r1.1
Juniper Junos Pulse Access Control Service 4.1r2
Juniper Junos Pulse Access Control Service 4.1r3
Juniper Junos Pulse Access Control Service 4.1r4
Juniper Junos Pulse Access Control Service 4.1r1
Juniper Junos Pulse Access Control Service 4.1r5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »