Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asset manager vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2017-1000196
October CMS build 412 is vulnerable to PHP code execution in the asset manager functionality resulting in site compromise and possibly other applications on the server.
Octobercms October
668
VMScore
CVE-2015-1605
Multiple SQL injection vulnerabilities in Dell ScriptLogic Asset Manager (aka Quest Workspace Asset Manager) prior to 9.5 allow remote malicious users to execute arbitrary SQL commands via unspecified vectors to (1) GetClientPackage.aspx or (2) GetProcessedPackage.aspx.
Dell Asset Manager
668
VMScore
CVE-2014-2503
The thumbnail proxy server in EMC Documentum Digital Asset Manager (DAM) 6.5 SP3, 6.5 SP4, 6.5 SP5, and 6.5 SP6 before P13 allows remote malicious users to conduct Documentum Query Language (DQL) injection attacks and bypass intended restrictions on querying objects via a crafted...
Emc Documentum Digital Asset Manager 6.5
668
VMScore
CVE-2013-0269
The JSON gem prior to 1.5.5, 1.6.x prior to 1.6.8, and 1.7.x prior to 1.7.7 for Ruby allows remote malicious users to cause a denial of service (resource consumption) or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbi...
Rubygems Json Gem 1.7.1
Rubygems Json Gem 1.7.0
Rubygems Json Gem 1.6.1
Rubygems Json Gem 1.6.0
Rubygems Json Gem 1.7.6
Rubygems Json Gem 1.7.5
Rubygems Json Gem 1.6.5
Rubygems Json Gem 1.6.4
Rubygems Json Gem 1.5.2
Rubygems Json Gem 1.5.1
Rubygems Json Gem 1.7.4
Rubygems Json Gem 1.7.3
Rubygems Json Gem 1.7.2
Rubygems Json Gem 1.6.3
Rubygems Json Gem 1.6.2
Rubygems Json Gem 1.5.0
Rubygems Json Gem 1.6.7
Rubygems Json Gem 1.6.6
Rubygems Json Gem 1.5.4
Rubygems Json Gem 1.5.3
1 Github repository
668
VMScore
CVE-2006-6641
Unspecified vulnerability in CA CleverPath Portal before maintenance version 4.71.001_179_060830, as used in multiple products including BrightStor Portal r11.1, CleverPath Aion BPM r10 through r10.2, eTrust Security Command Center r1 and r8, and Unicenter, does not properly hand...
Cleverpath Aion Bpm R10.2
Cleverpath Portal R4.51
Unicenter Database Management Portal R11
Unicenter Enterprise Job Manager R1 Sp3
Arcserve Brightstor 11.1
Etrust Security Command Center R1
Etrust Security Command Center R8
Unicenter Workload Control Center R1 Sp4
Broadcom Cleverpath Portal
Cleverpath Aion Bpm R10
Cleverpath Aion Bpm R10.1
Unicenter Asset And Portfolio Management R11
Unicenter Database Command Center R11.1
Cleverpath Portal R4.7
Cleverpath Portal R4.71
Unicenter Management Portal R11.0
Unicenter Management Portal R2.0
Unicenter Management Portal R3.1
668
VMScore
CVE-2005-1668
YusASP Web Asset Manager 1.0 allows remote malicious users to gain privileges via a direct request to assetmanager.asp.
Yusasp Web Asset Manager 1.0
655
VMScore
CVE-2015-0104
IBM Tivoli IT Asset Management for IT, Tivoli Service Request Manager, and Change and Configuration Management Database 7.1 up to and including 7.1.1.8 and 7.2 and Maximo Asset Management and Maximo Industry Solutions 7.1 up to and including 7.1.1.8, 7.5 prior to 7.5.0.7 IFIX003,...
Ibm Maximo Asset Management 7.1.1
Ibm Maximo Asset Management 7.1.1.2
Ibm Maximo For Life Sciences 7.1
Ibm Maximo For Oil And Gas 7.1
Ibm Tivoli Service Request Manager 7.1
Ibm Maximo Asset Management 7.1.1.6
Ibm Maximo Asset Management 7.1.1.7
Ibm Maximo Asset Management 7.1.1.8
Ibm Maximo Asset Management Essentials 7.1
Ibm Change And Configuration Management Database 7.1
Ibm Change And Configuration Management Database 7.2
Ibm Maximo Asset Management 7.1
Ibm Maximo For Transportation 7.1
Ibm Maximo For Utilities 7.1
Ibm Tivoli Asset Management For It 7.1
Ibm Tivoli Asset Management For It 7.2
Ibm Maximo Asset Management 7.1.1.1
Ibm Maximo Asset Management 7.1.1.5
Ibm Maximo For Government 7.1
Ibm Maximo For Nuclear Power 7.1
Ibm Tivoli Service Request Manager 7.2
1 EDB exploit
655
VMScore
CVE-2014-2587
SQL injection vulnerability in jsp/reports/ReportsAudit.jsp in McAfee Asset Manager 6.6 allows remote authenticated users to execute arbitrary SQL commands via the username of an audit report (aka user parameter).
Mcafee Asset Manager 6.6
1 EDB exploit
641
VMScore
CVE-2007-2950
Centennial Discovery 2006 Feature Pack 1, which is used by (1) Numara Asset Manager 8.0 and (2) Symantec Discovery 6.5, uses insecure permissions on certain directories, which allows local users to gain privileges.
Centennial Discovery 2006 Featurepack1
Numara Asset Manager 8.0
Symantec Discovery 6.5
605
VMScore
CVE-2013-3323
A Privilege Escalation Vulnerability exists in IBM Maximo Asset Management 7.5, 7.1, and 6.2, when WebSeal with Basic Authentication is used, due to a failure to invalidate the authentication session, which could let a malicious user obtain unauthorized access.
Ibm Change And Configuration Management Database 7.1
Ibm Change And Configuration Management Database 7.2
Ibm Maximo Asset Management 6.2
Ibm Maximo Asset Management 7.1
Ibm Maximo Asset Management 7.5
Ibm Maximo Asset Management Essentials 6.2
Ibm Maximo Asset Management Essentials 7.1
Ibm Maximo Asset Management Essentials 7.5
Ibm Maximo For Government 6.2
Ibm Maximo For Government 7.1
Ibm Maximo For Government 7.5
Ibm Maximo For Life Sciences 6.2
Ibm Maximo For Life Sciences 6.4
Ibm Maximo For Life Sciences 6.5
Ibm Maximo For Life Sciences 7.1
Ibm Maximo For Life Sciences 7.5
Ibm Maximo For Nuclear Power 6.2
Ibm Maximo For Nuclear Power 6.3
Ibm Maximo For Nuclear Power 7.1
Ibm Maximo For Nuclear Power 7.5
Ibm Maximo For Oil And Gas 6.2
Ibm Maximo For Oil And Gas 6.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »