Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloud portal vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-1139
The nsAPI interface in Cisco Cloud Portal 9.1 SP1 and SP2, and 9.3 up to and including 9.3.2, does not properly check privileges, which allows remote authenticated users to obtain sensitive information via a crafted URL, aka Bug ID CSCud81134.
Cisco Cloud Portal 9.1
Cisco Cloud Portal 9.3
Cisco Cloud Portal 9.3.2
Cisco Cloud Portal 9.3.1
NA
CVE-2014-3352
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) 2008.3_SP9 and previous versions does not properly consider whether a session is a problematic NULL session, which allows remote malicious users to obtain sensitive information via crafted packets, related to an &quo...
Cisco Cloud Portal 2008.3
Cisco Cloud Portal 9.1
Cisco Cloud Portal 9.4
Cisco Cloud Portal 9.3.2
Cisco Cloud Portal
Cisco Cloud Portal 9.3.1
Cisco Cloud Portal 9.3
NA
CVE-2014-0694
Intelligent Automation for Cloud (IAC) in Cisco Cloud Portal 9.4.1 and previous versions includes a cryptographic key in binary files, which makes it easier for remote malicious users to obtain cleartext data from an arbitrary IAC installation by leveraging knowledge of this key,...
Cisco Cloud Portal 9.3.1
Cisco Cloud Portal 9.3.2
Cisco Cloud Portal 9.4
Cisco Cloud Portal 9.1
Cisco Cloud Portal 9.3
Cisco Cloud Portal
NA
CVE-2013-6708
Cisco Cloud Portal 9.4 allows remote malicious users to read files of unspecified types via a direct request, aka Bug IDs CSCuj08426 and CSCui60889.
Cisco Cloud Portal 9.4
NA
CVE-2014-3351
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not properly consider whether a session is a problematic NULL session, which allows remote malicious users to obtain sensitive information via crafted packets, aka Bug IDs CSCuh87398 and CSCuh87380.
Cisco Cloud Portal -
NA
CVE-2014-3349
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not validate file types during the handling of file submission, which allows remote authenticated users to upload arbitrary files via a crafted request, aka Bug ID CSCuh87410.
Cisco Cloud Portal -
NA
CVE-2014-3350
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not properly implement URL redirection, which allows remote authenticated users to obtain sensitive information via a crafted URL, aka Bug ID CSCuh84870.
Cisco Cloud Portal -
NA
CVE-2014-3297
Cisco Intelligent Automation for Cloud in Cisco Cloud Portal does not properly restrict the content of MyServices action URLs, which allows remote authenticated users to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer logs, or (3) the br...
Cisco Cloud Portal -
NA
CVE-2014-3298
Form Data Viewer in Cisco Intelligent Automation for Cloud in Cisco Cloud Portal places passwords in form data, which allows remote authenticated users to obtain sensitive information by reading HTML source code, aka Bug ID CSCui36976.
Cisco Cloud Portal -
7.5
CVSSv3
CVE-2021-22854
The HR Portal of Soar Cloud System fails to filter specific parameters. Remote attackers can inject SQL syntax and obtain all data in the database without privilege.
Hr Portal Project Hr Portal 7.3.2020.1013
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »