Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
configuration manager vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2020-25654
An ACL bypass flaw was found in pacemaker. An attacker having a local account on the cluster and in the haclient group could use IPC communication with various daemons directly to perform certain tasks that they would be prevented by ACLs from doing if they went through the confi...
Clusterlabs Pacemaker 2.0.5
Clusterlabs Pacemaker
Debian Debian Linux 9.0
801
VMScore
CVE-2020-24986
Concrete5 up to and including 8.5.2 allows Unrestricted Upload of File with Dangerous Type such as a .php file via File Manager. It is possible to modify site configuration to upload the PHP file and execute arbitrary commands.
Concretecms Concrete Cms
801
VMScore
CVE-2019-19475
An issue exists in ManageEngine Applications Manager 14 with Build 14360. Integrated PostgreSQL which is built-in in Applications Manager is prone to attack due to lack of file permission security. The malicious users who are in “Authenticated Users” group can exploit...
Zohocorp Manageengine Applications Manager 14.3
801
VMScore
CVE-2017-12277
A vulnerability in the Smart Licensing Manager service of the Cisco Firepower 4100 Series Next-Generation Firewall (NGFW) and Firepower 9300 Security Appliance could allow an authenticated, remote malicious user to inject arbitrary commands that could be executed with root privil...
Cisco Firepower Extensible Operating System
Cisco Firepower Extensible Operating System 1.1.4
Cisco Firepower Extensible Operating System 2.0.1
801
VMScore
CVE-2016-5020
F5 BIG-IP prior to 12.0.0 HF3 allows remote authenticated users to modify the account configuration of users with the Resource Administration role and gain privilege via a crafted external Extended Application Verification (EAV) monitor script.
F5 Big-ip Wan Optimization Manager 11.2.1
F5 Big-ip Wan Optimization Manager 10.2.4
F5 Big-ip Wan Optimization Manager 10.2.2
F5 Big-ip Wan Optimization Manager 10.2.3
F5 Big-ip Wan Optimization Manager 10.2.1
F5 Big-ip Protocol Security Module 11.4.1
F5 Big-ip Protocol Security Module 11.4.0
F5 Big-ip Protocol Security Module 10.2.4
F5 Big-ip Protocol Security Module 10.2.3
F5 Big-ip Protocol Security Module 10.2.2
F5 Big-ip Protocol Security Module 10.2.1
F5 Big-ip Application Acceleration Manager 11.4.1
F5 Big-ip Application Acceleration Manager 11.4.0
F5 Big-ip Application Acceleration Manager 12.1.0
F5 Big-ip Application Acceleration Manager 11.6.1
F5 Big-ip Application Acceleration Manager 11.6.0
F5 Big-ip Application Acceleration Manager 11.5.4
F5 Big-ip Application Acceleration Manager 11.5.2
F5 Big-ip Application Acceleration Manager 11.5.0
F5 Big-ip Application Acceleration Manager 12.0.0
F5 Big-ip Application Acceleration Manager 11.5.3
F5 Big-ip Application Acceleration Manager 11.5.1
801
VMScore
CVE-2016-1297
The Device Manager GUI in Cisco Application Control Engine (ACE) 4710 A5 before A5(3.1) allows remote authenticated users to bypass intended RBAC restrictions and execute arbitrary CLI commands with admin privileges via an unspecified parameter in a POST request, aka Bug ID CSCul...
Cisco Application Control Engine Software A5\\(2.1\\)
Cisco Application Control Engine Software A5\\(2.0\\)
Cisco Application Control Engine Software A5\\(1.2\\)
Cisco Application Control Engine Software A5\\(1.1\\)
Cisco Application Control Engine Software A5\\(1.0\\)
Cisco Application Control Engine Software A5\\(3.0\\)
Cisco Application Control Engine Software A5\\(2.1e\\)
801
VMScore
CVE-2013-4633
Huawei Seco Versatile Security Manager (VSM) before V200R002C00SPC300 allows remote authenticated users to gain privileges via a certain change to a group configuration setting.
Huawei Seco Versatile Security Manager V200r002c00
Huawei Seco Versatile Security Manager V200r002c00spc200
Huawei Seco Versatile Security Manager V200r002c00spc100
801
VMScore
CVE-2012-4661
Stack-based buffer overflow in the DCERPC inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.3 prior to 8.3(2.34), 8.4 prior to 8.4(4.4), 8.5 prior to 8.5(1....
Cisco Adaptive Security Appliance Software 8.3\\(1\\)
Cisco Adaptive Security Appliance Software 8.3\\(2\\)
Cisco Adaptive Security Appliance Software 8.4
Cisco Adaptive Security Appliance Software 8.4\\(1\\)
Cisco Adaptive Security Appliance Software 8.4\\(1.11\\)
Cisco Adaptive Security Appliance Software 8.4\\(2\\)
Cisco Adaptive Security Appliance Software 8.4\\(2.11\\)
Cisco Adaptive Security Appliance Software 8.5
Cisco Adaptive Security Appliance Software 8.5\\(1\\)
Cisco Adaptive Security Appliance Software 8.5\\(1.4\\)
Cisco Adaptive Security Appliance Software 8.6
Cisco Adaptive Security Appliance Software 8.6\\(1\\)
Cisco 5500 Series Adaptive Security Appliance
Cisco 7600 Router
Cisco Catalyst 6500
Cisco Catalyst 6503-e -
Cisco Catalyst 6504-e -
Cisco Catalyst 6506-e -
Cisco Catalyst 6509-e -
Cisco Catalyst 6509-neb-a -
Cisco Catalyst 6509-v-e -
Cisco Catalyst 6513 -
801
VMScore
CVE-2008-6708
Unspecified vulnerability in the Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with Avaya Communication Manager 3.1.x and 4.x, allows remote authenticated administrators to gain root privileges via unknown vectors related to configuration of...
Avaya Communication Manager 3.1.3
Avaya Communication Manager 4.0.3
Avaya Communication Manager 3.1.1
Avaya Sip Enablement Services 3.0
Avaya Communication Manager 4.0
Avaya Communication Manager 3.1.5
Avaya Communication Manager 4.0.1
Avaya Communication Manager 3.1
Avaya Communication Manager 3.1.4
Avaya Communication Manager 3.1.2
801
VMScore
CVE-2008-6709
Unspecified vulnerability in the Web management interface in Avaya SIP Enablement Services (SES) 3.x and 4.0, as used with Avaya Communication Manager 3.1.x, allows remote authenticated users to execute arbitrary commands via unknown vectors related to configuration of "loca...
Avaya Sip Enablement Services 3.0
Avaya Sip Enablement Services 3.1
Avaya Sip Enablement Services 3.1.1
Avaya Sip Enablement Services 4.0
Avaya Communication Manager 3.1
Avaya Communication Manager 3.1.2
Avaya Communication Manager 3.1.4
Avaya Communication Manager 3.1.5
Avaya Communication Manager 3.1.3
Avaya Communication Manager 3.1.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »