Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
configuration manager vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2008-6474
The management interface in F5 BIG-IP 9.4.3 allows remote authenticated users with Resource Manager privileges to inject arbitrary Perl code via unspecified configuration settings related to Perl EP3 with templates, probably triggering static code injection.
F5 Tmos 9.4.3
801
VMScore
CVE-2009-0632
The IP Phone Personal Address Book (PAB) Synchronizer feature in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.1, 4.2 prior to 4.2(3)SR4b, 4.3 prior to 4.3(2)SR1b, 5.x prior to 5.1(3e), 6.x prior to 6.1(3), and 7.0 prior to 7.0(2) sends privileged direct...
Cisco Unified Communications Manager 4.1
Cisco Unified Communications Manager 4.3\\(2\\)sr1
Cisco Unified Communications Manager 4.3\\(2\\)
Cisco Unified Communications Manager 5.1\\(1\\)
Cisco Unified Communications Manager 5.1\\(3d\\)
Cisco Unified Communications Manager 6.1\\(1\\)
Cisco Unified Communications Manager 6.1\\(2\\)
Cisco Unified Communications Manager 4.2\\(3\\)sr1
Cisco Unified Communications Manager 4.2\\(3\\)sr4
Cisco Unified Communications Manager 5.1\\(3c\\)
Cisco Unified Communications Manager 5.1\\(3a\\)
Cisco Unified Communications Manager 6.0\\(1a\\)
Cisco Unified Communications Manager 6.0\\(1\\)
Cisco Unified Communications Manager 7.0
Cisco Unified Communications Manager 7.0\\(1\\)
Cisco Unified Communications Manager 4.2\\(3\\)sr3
Cisco Unified Communications Manager 4.2\\(3\\)sr2b
Cisco Unified Communications Manager 5.1\\(3\\)
Cisco Unified Communications Manager 5.1\\(2b\\)
Cisco Unified Communications Manager 5.1\\(2\\)
Cisco Unified Communications Manager 6.1
Cisco Unified Communications Manager 6.1\\(2\\)su1
798
VMScore
CVE-2016-5195
Race condition in mm/gup.c in the Linux kernel 2.x up to and including 4.x prior to 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka ...
Canonical Ubuntu Linux 16.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux Tus 6.5
Redhat Enterprise Linux Eus 6.7
Redhat Enterprise Linux Long Life 5.6
Redhat Enterprise Linux Aus 6.4
Redhat Enterprise Linux 5
Redhat Enterprise Linux Long Life 5.9
Redhat Enterprise Linux Aus 6.2
Redhat Enterprise Linux Eus 7.1
Redhat Enterprise Linux Eus 6.6
Redhat Enterprise Linux Aus 6.5
Debian Debian Linux 8.0
Debian Debian Linux 7.0
5 EDB exploits
177 Github repositories
6 Articles
790
VMScore
CVE-2015-7871
Crypto-NAK packets in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to bypass authentication.
Ntp Ntp 4.2.5
Ntp Ntp
Ntp Ntp 4.2.8
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
785
VMScore
CVE-2013-3431
Cisco Video Surveillance Manager (VSM) prior to 7.0.0 does not require authentication for access to VSMC monitoring pages, which allows remote malicious users to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka ...
Cisco Video Surveillance Manager 2.1.6
Cisco Video Surveillance Manager 2.1.4
Cisco Video Surveillance Manager 6.3
Cisco Video Surveillance Manager 1.1.0
Cisco Video Surveillance Manager 2.3.0
Cisco Video Surveillance Manager 2.1
Cisco Video Surveillance Manager 2.3.1
Cisco Video Surveillance Manager 6.3.2
Cisco Video Surveillance Manager
Cisco Video Surveillance Manager 2.1.3
Cisco Video Surveillance Manager 2.1.2
Cisco Video Surveillance Manager 4.0.1
Cisco Video Surveillance Manager 4.2.0
Cisco Video Surveillance Manager 1.2.1
Cisco Video Surveillance Manager 6.3.1
Cisco Video Surveillance Manager 4.2.1
Cisco Video Surveillance Manager 2.0.0
Cisco Video Surveillance Manager 2.1.7
1 EDB exploit
783
VMScore
CVE-2020-3158
A vulnerability in the High Availability (HA) service of Cisco Smart Software Manager On-Prem could allow an unauthenticated, remote malicious user to access a sensitive part of the system with a high-privileged account. The vulnerability is due to a system account that has a def...
Cisco Smart Software Manager On-prem
1 Article
770
VMScore
CVE-2002-0079
Buffer overflow in the chunked encoding transfer mechanism in Internet Information Server (IIS) 4.0 and 5.0 Active Server Pages allows malicious users to cause a denial of service or execute arbitrary code.
Microsoft Internet Information Services 5.0
Microsoft Internet Information Server 4.0
4 EDB exploits
766
VMScore
CVE-2021-44832
Apache Log4j2 versions 2.0-beta7 up to and including 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the tar...
Apache Log4j 2.0
Apache Log4j
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Weblogic Server 12.2.1.4.0
Oracle Primavera Unifier 19.12
Oracle Weblogic Server 14.1.1.0.0
Oracle Primavera Unifier 20.12
Oracle Communications Interactive Session Recorder 6.3
Oracle Communications Interactive Session Recorder 6.4
Oracle Primavera Gateway
Oracle Retail Assortment Planning 16.0.3
Oracle Primavera Unifier 21.12
Oracle Primavera P6 Enterprise Project Portfolio Management 21.12.0.0
Oracle Primavera P6 Enterprise Project Portfolio Management
Oracle Primavera Gateway 21.12.0
Oracle Retail Fiscal Management 14.2
Oracle Siebel Ui Framework 21.12
Oracle Communications Diameter Signaling Router
Cisco Cloudcenter 4.10.0.16
Fedoraproject Fedora 34
Fedoraproject Fedora 35
34 Github repositories
4 Articles
760
VMScore
CVE-2018-8733
Authentication bypass vulnerability in the core config manager in Nagios XI 5.2.x up to and including 5.4.x prior to 5.4.13 allows an unauthenticated malicious user to make configuration changes and leverage an authenticated SQL injection vulnerability.
Nagios Nagios Xi
2 EDB exploits
1 Github repository
760
VMScore
CVE-2002-0724
Buffer overflow in SMB (Server Message Block) protocol in Microsoft Windows NT, Windows 2000, and Windows XP allows malicious users to cause a denial of service (crash) via a SMB_COM_TRANSACTION packet with a request for the (1) NetShareEnum, (2) NetServerEnum2, or (3) NetServerE...
Microsoft Windows 2000
Microsoft Windows Nt 4.0
Microsoft Windows Xp
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »