Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
automation manager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-4529
Multiple buffer overflows in Siemens Automation License Manager (ALM) 4.0 up to and including 5.1+SP1+Upd1 allow remote malicious users to execute arbitrary code via a long serialid field in an _licensekey command, as demonstrated by the (1) check_licensekey or (2) read_licenseke...
Siemens Automation License Manager
1 EDB exploit
7.8
CVSSv3
CVE-2020-7583
A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0.8). The application does not properly validate the users' privileges when executing some operations, which could allow a user with low per...
Siemens Automation License Manager
8.2
CVSSv3
CVE-2022-2458
XML external entity injection(XXE) is a vulnerability that allows an malicious user to interfere with an application's processing of XML data. This attack occurs when XML input containing a reference to an external entity is processed by a weakly configured XML parser. The s...
Redhat Process Automation Manager
9.8
CVSSv3
CVE-2022-2457
A flaw was found in Red Hat Process Automation Manager 7 where an attacker can benefit from a brute force attack against Administration Console as the application does not limit the number of unsuccessful login attempts.
Redhat Process Automation Manager
8.8
CVSSv3
CVE-2018-11455
A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4), Automation License Manager 6 (All versions < 6.0.1). A directory traversal vulnerability could allow a remote malicious user to move arbitrary files, which can result in code execu...
Siemens Automation License Manager
5.8
CVSSv3
CVE-2018-11456
A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4). An attacker with network access to the device could send specially crafted network packets to determine whether or not a network port on another remote system is accessible or not. Th...
Siemens Automation License Manager
7.5
CVSSv3
CVE-2016-8563
Siemens Automation License Manager (ALM) prior to 5.3 SP3 Update 1 allows remote malicious users to cause a denial of service (ALM service outage) via crafted packets to TCP port 4410.
Siemens Automation License Manager
6.5
CVSSv3
CVE-2016-8564
SQL injection vulnerability in Siemens Automation License Manager (ALM) prior to 5.3 SP3 Update 1 allows remote malicious users to execute arbitrary SQL commands via crafted traffic to TCP port 4410.
Siemens Automation License Manager
9.1
CVSSv3
CVE-2016-8565
Siemens Automation License Manager (ALM) prior to 5.3 SP3 allows remote malicious users to write to files, rename files, create directories, or delete directories via crafted packets.
Siemens Automation License Manager
5.4
CVSSv3
CVE-2021-29834
IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, 18.0.0.2, 19.0.0.1, 19.0.0.2, 19.0.0.3,20.0.0.1, 20.0.0.2, and 21.0.2 and IBM Business Process Manager 8.5 and 8.6 are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript cod...
Ibm Business Automation Workflow 18.0.0.0
Ibm Business Automation Workflow 18.0.0.1
Ibm Business Automation Workflow 18.0.0.2
Ibm Business Automation Workflow 19.0.0.1
Ibm Business Automation Workflow 19.0.0.2
Ibm Business Automation Workflow 19.0.0.3
Ibm Business Automation Workflow 20.0.0.1
Ibm Business Automation Workflow 20.0.0.2
Ibm Business Automation Workflow 21.0.2
Ibm Business Process Manager 8.5.0.0
Ibm Business Process Manager 8.6.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »