Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asset manager vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2016-2000
HPE Asset Manager 9.40, 9.41, and 9.50 and Asset Manager CloudSystem Chargeback 9.40 allow remote malicious users to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
Hp Asset Manager Cloudsystem Chargeback 9.40
Hp Asset Manager 9.50
Hp Asset Manager 9.41
Hp Asset Manager 9.40
7.5
CVSSv2
CVE-2015-1605
Multiple SQL injection vulnerabilities in Dell ScriptLogic Asset Manager (aka Quest Workspace Asset Manager) prior to 9.5 allow remote malicious users to execute arbitrary SQL commands via unspecified vectors to (1) GetClientPackage.aspx or (2) GetProcessedPackage.aspx.
Dell Asset Manager
7.5
CVSSv2
CVE-2014-2503
The thumbnail proxy server in EMC Documentum Digital Asset Manager (DAM) 6.5 SP3, 6.5 SP4, 6.5 SP5, and 6.5 SP6 before P13 allows remote malicious users to conduct Documentum Query Language (DQL) injection attacks and bypass intended restrictions on querying objects via a crafted...
Emc Documentum Digital Asset Manager 6.5
7.5
CVSSv2
CVE-2013-0269
The JSON gem prior to 1.5.5, 1.6.x prior to 1.6.8, and 1.7.x prior to 1.7.7 for Ruby allows remote malicious users to cause a denial of service (resource consumption) or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbi...
Rubygems Json Gem 1.7.1
Rubygems Json Gem 1.7.0
Rubygems Json Gem 1.6.1
Rubygems Json Gem 1.6.0
Rubygems Json Gem 1.7.6
Rubygems Json Gem 1.7.5
Rubygems Json Gem 1.6.5
Rubygems Json Gem 1.6.4
Rubygems Json Gem 1.5.2
Rubygems Json Gem 1.5.1
Rubygems Json Gem 1.7.4
Rubygems Json Gem 1.7.3
Rubygems Json Gem 1.7.2
Rubygems Json Gem 1.6.3
Rubygems Json Gem 1.6.2
Rubygems Json Gem 1.5.0
Rubygems Json Gem 1.6.7
Rubygems Json Gem 1.6.6
Rubygems Json Gem 1.5.4
Rubygems Json Gem 1.5.3
1 Github repository
7.5
CVSSv2
CVE-2006-6641
Unspecified vulnerability in CA CleverPath Portal before maintenance version 4.71.001_179_060830, as used in multiple products including BrightStor Portal r11.1, CleverPath Aion BPM r10 through r10.2, eTrust Security Command Center r1 and r8, and Unicenter, does not properly hand...
Cleverpath Aion Bpm R10.2
Cleverpath Portal R4.51
Unicenter Database Management Portal R11
Unicenter Enterprise Job Manager R1 Sp3
Arcserve Brightstor 11.1
Etrust Security Command Center R1
Etrust Security Command Center R8
Unicenter Workload Control Center R1 Sp4
Broadcom Cleverpath Portal
Cleverpath Aion Bpm R10
Cleverpath Aion Bpm R10.1
Unicenter Asset And Portfolio Management R11
Unicenter Database Command Center R11.1
Cleverpath Portal R4.7
Cleverpath Portal R4.71
Unicenter Management Portal R11.0
Unicenter Management Portal R2.0
Unicenter Management Portal R3.1
7.5
CVSSv2
CVE-2005-1668
YusASP Web Asset Manager 1.0 allows remote malicious users to gain privileges via a direct request to assetmanager.asp.
Yusasp Web Asset Manager 1.0
7.2
CVSSv2
CVE-2007-2950
Centennial Discovery 2006 Feature Pack 1, which is used by (1) Numara Asset Manager 8.0 and (2) Symantec Discovery 6.5, uses insecure permissions on certain directories, which allows local users to gain privileges.
Centennial Discovery 2006 Featurepack1
Numara Asset Manager 8.0
Symantec Discovery 6.5
6.8
CVSSv2
CVE-2013-3323
A Privilege Escalation Vulnerability exists in IBM Maximo Asset Management 7.5, 7.1, and 6.2, when WebSeal with Basic Authentication is used, due to a failure to invalidate the authentication session, which could let a malicious user obtain unauthorized access.
Ibm Change And Configuration Management Database 7.1
Ibm Change And Configuration Management Database 7.2
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management Essentials 6.2
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo For Government 6.2
Ibm Maximo For Government 7.1
Ibm Maximo For Government 7.5
Ibm Maximo For Life Sciences 6.2
Ibm Maximo For Life Sciences 6.4
Ibm Maximo For Life Sciences 6.5
Ibm Maximo For Life Sciences 7.1
Ibm Maximo For Life Sciences 7.5
Ibm Maximo For Nuclear Power 6.2
Ibm Maximo For Nuclear Power 6.3
Ibm Maximo For Nuclear Power 7.1
Ibm Maximo For Nuclear Power 7.5
Ibm Maximo For Oil And Gas 6.2
Ibm Maximo For Oil And Gas 6.3
6.8
CVSSv2
CVE-2018-16545
Kaizen Asset Manager (Enterprise Edition) and Training Manager (Enterprise Edition) allow a remote malicious user to achieve arbitrary code execution via file impersonation. For example, a malicious dynamic-link library (dll) assumed the identity of a temporary (tmp) file (isxdl....
Kzsoftware Training Manager
Kzsoftware Asset Manager
6.8
CVSSv2
CVE-2015-4530
Cross-site request forgery (CSRF) vulnerability in EMC Documentum WebTop prior to 6.8P01, Documentum Administrator up to and including 7.2, Documentum Digital Assets Manager up to and including 6.5SP6, Documentum Web Publishers up to and including 6.5SP7, and Documentum Task Spac...
Emc Documentum Web Publisher
Emc Documentum Taskspace
Emc Documentum Webtop
Emc Documentum Digital Asset Manager
Emc Documentum Administrator
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »