Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
configuration manager vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-4023
The 3DPrint WordPress plugin prior to 3.5.6.9 does not protect against CSRF attacks in the modified version of Tiny File Manager included with the plugin, allowing an malicious user to craft a malicious request that will create an archive of any files or directories on the target...
3dprint Project 3dprint
6
CVSSv3
CVE-2023-20210
A vulnerability in Cisco BroadWorks could allow an authenticated, local malicious user to elevate privileges to the root user on an affected device. The vulnerability is due to insufficient input validation by the operating system CLI. An attacker could exploit this vulnerability...
Cisco Broadworks Application Delivery Platform Firmware 23.0
Cisco Broadworks Application Delivery Platform Firmware 24.0
Cisco Broadworks Application Delivery Platform Firmware 25.0
Cisco Broadworks Application Server Firmware 23.0
Cisco Broadworks Application Server Firmware 24.0
Cisco Broadworks Application Server Firmware 25.0
Cisco Broadworks Database Server Firmware 23.0
Cisco Broadworks Database Server Firmware 24.0
Cisco Broadworks Database Server Firmware 25.0
Cisco Broadworks Database Troubleshooting Server Firmware 23.0
Cisco Broadworks Database Troubleshooting Server Firmware 24.0
Cisco Broadworks Database Troubleshooting Server Firmware 25.0
Cisco Broadworks Execution Server Firmware 23.0
Cisco Broadworks Execution Server Firmware 24.0
Cisco Broadworks Execution Server Firmware 25.0
Cisco Broadworks Media Server Firmware 23.0
Cisco Broadworks Media Server Firmware 24.0
Cisco Broadworks Media Server Firmware 25.0
Cisco Broadworks Messaging Server Firmware 23.0
Cisco Broadworks Messaging Server Firmware 24.0
Cisco Broadworks Messaging Server Firmware 25.0
Cisco Broadworks Network Database Server Firmware 23.0
6.5
CVSSv3
CVE-2023-3338
A null pointer dereference flaw was found in the Linux kernel's DECnet networking protocol. This issue could allow a remote user to crash the system.
Linux Linux Kernel
Netapp Active Iq Unified Manager -
Debian Debian Linux 10.0
Debian Debian Linux 11.0
9.8
CVSSv3
CVE-2023-2068
The File Manager Advanced Shortcode WordPress plugin up to and including 2.3.2 does not adequately prevent uploading files with disallowed MIME types when using the shortcode. This leads to RCE in cases where the allowed MIME type list does not include PHP files. In the worst cas...
Advancedfilemanager File Manager Advanced Shortcode
7.5
CVSSv3
CVE-2023-2828
Every `named` instance configured to run as a recursive resolver maintains a cache database holding the responses to the queries it has recently sent to authoritative servers. The size limit for that cache database can be configured using the `max-cache-size` statement in the con...
Isc Bind
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
Fedoraproject Fedora 37
Fedoraproject Fedora 38
Netapp Active Iq Unified Manager -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Netapp H300s Firmware -
5
CVSSv3
CVE-2023-2638
Rockwell Automation's FactoryTalk System Services does not verify that a backup configuration archive is password protected. Improper authorization in FTSSBackupRestore.exe may lead to the loading of malicious configuration archives. This vulnerability may allow a local, au...
Rockwellautomation Factorytalk System Services 6.11.0
Rockwellautomation Factorytalk Policy Manager 6.11.0
5.5
CVSSv3
CVE-2023-32324
OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote malicious user to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function `format_log_line` could allow rem...
Openprinting Cups
Debian Debian Linux 10.0
7.5
CVSSv3
CVE-2023-20883
In Spring Boot versions 3.0.0 - 3.0.6, 2.7.0 - 2.7.11, 2.6.0 - 2.6.14, 2.5.0 - 2.5.14 and older unsupported versions, there is potential for a denial-of-service (DoS) attack if Spring MVC is used together with a reverse proxy cache.
Vmware Spring Boot
2 Github repositories
7.2
CVSSv3
CVE-2023-32568
An issue exists in Veritas InfoScale Operations Manager (VIOM) prior to 7.4.2.800 and 8.x prior to 8.0.410. The VIOM web application does not validate user-supplied data and appends it to OS commands and internal binaries used by the application. An attacker with root/administrat...
Veritas Infoscale Operations Manager
6.1
CVSSv3
CVE-2023-27378
Multiple reflected cross-site scripting (XSS) vulnerabilities exist in undisclosed pages of the BIG-IP Configuration utility which allow an malicious user to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technica...
F5 Big-ip Analytics
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Local Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Global Traffic Manager
F5 Big-ip Fraud Protection Service
F5 Big-ip Domain Name System
F5 Big-ip Application Security Manager
F5 Big-ip Application Acceleration Manager
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Access Policy Manager
F5 Big-ip Advanced Web Application Firewall
F5 Big-ip Application Visibility And Reporting
F5 Big-ip Carrier-grade Nat
F5 Big-ip Ddos Hybrid Defender
F5 Big-ip Edge Gateway
F5 Big-ip Ssl Orchestrator
F5 Big-ip Webaccelerator
F5 Big-ip Websafe
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »