Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
analyzer vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2014-6038
Zoho ManageEngine EventLog Analyzer versions 7 up to and including 9.9 build 9002 have a database Information Disclosure Vulnerability. Fixed in EventLog Analyzer 10.0 Build 10000.
Zohocorp Manageengine Eventlog Analyzer
1 EDB exploit
2 Metasploit modules
7.5
CVSSv3
CVE-2014-6039
ManageEngine EventLog Analyzer version 7 up to and including 9.9 build 9002 has a Credentials Disclosure Vulnerability. Fixed version 10 Build 10000.
Zohocorp Manageengine Eventlog Analyzer
1 EDB exploit
2 Metasploit modules
NA
CVE-2015-2959
Zoho NetFlow Analyzer build 10250 and previous versions does not check for administrative authorization, which allows remote malicious users to obtain sensitive information, modify passwords, or remove accounts by leveraging the guest role.
Zohocorp Manageengine Netflow Analyzer -
NA
CVE-2015-2961
Cross-site request forgery (CSRF) vulnerability in Zoho NetFlow Analyzer build 10250 and previous versions allows remote malicious users to hijack the authentication of administrators.
Zohocorp Manageengine Netflow Analyzer -
NA
CVE-2007-1642
Unspecified vulnerability in ManageEngine Firewall Analyzer allows remote authenticated users to "access any common file" via a direct URL request.
Manageengine Firewall Analyzer 4.0
7.8
CVSSv3
CVE-2019-0158
Insufficient path checking in the installation package for Intel(R) Graphics Performance Analyzer for Linux version 18.4 and before may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Graphics Performance Analyzer
1 Article
6.5
CVSSv3
CVE-2020-14693
Vulnerability in the Oracle Insurance Accounting Analyzer product of Oracle Financial Services Applications (component: User Interface). Supported versions that are affected are 8.0.6-8.0.9. Easily exploitable vulnerability allows low privileged attacker with network access via H...
Oracle Insurance Accounting Analyzer
8.8
CVSSv3
CVE-2019-16553
A cross-site request forgery vulnerability in Jenkins Build Failure Analyzer Plugin 1.24.1 and previous versions allows malicious users to have Jenkins evaluate a computationally expensive regular expression.
Jenkins Build Failure Analyzer
4.3
CVSSv3
CVE-2019-16554
A missing permission check in Jenkins Build Failure Analyzer Plugin 1.24.1 and previous versions allows attackers with Overall/Read permission to have Jenkins evaluate a computationally expensive regular expression.
Jenkins Build Failure Analyzer
NA
CVE-2013-7318
Cross-site scripting (XSS) vulnerability in BusinessFlow/login in AlgoSec Firewall Analyzer 6.4 allows remote malicious users to inject arbitrary web script or HTML via the message parameter.
Algosec Firewall Analyzer 6.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »