Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
control center vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-22190
An Improper Access Control vulnerability in the Juniper Networks Paragon Active Assurance Control Center allows an unauthenticated malicious user to leverage a crafted URL to generate PDF reports, potentially containing sensitive configuration information. A feature was introduce...
Juniper Paragon Active Assurance Control Center 3.1.0
4.8
CVSSv3
CVE-2023-29707
Cross Site Scripting (XSS) vulnerability in GBCOM LAC WEB Control Center version lac-1.3.x, allows malicious users to create an arbitrary device.
Gbcom Lac Web Control Center Lac-1.3.x
8.8
CVSSv3
CVE-2019-4071
IBM Tivoli Storage Productivity Center (IBM Spectrum Control Standard Edition 5.2.1 up to and including 5.2.17) could allow a remote malicious user to execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 157063.
Ibm Tivoli Storage Productivity Center
Ibm Spectrum Control
6.3
CVSSv3
CVE-2019-4072
IBM Tivoli Storage Productivity Center (IBM Spectrum Control Standard Edition 5.2.1 up to and including 5.2.17) allows users to remain idle within the application even when a user has logged out. Utilizing the application back button users can remain logged in as the current user...
Ibm Tivoli Storage Productivity Center
Ibm Spectrum Control
9.8
CVSSv3
CVE-2023-22855
Kardex Mlog MCC 5.7.12+0-a203c2a213-master allows remote code execution. It spawns a web interface listening on port 8088. A user-controllable path is handed to a path-concatenation method (Path.Combine from .NET) without proper sanitisation. This yields the possibility of includ...
Kardex Kardex Control Center 5.7.12\\+0-a203c2a213-master
2 Github repositories
7.4
CVSSv3
CVE-2021-0232
An authentication bypass vulnerability in the Juniper Networks Paragon Active Assurance Control Center may allow an attacker with specific information about the deployment to mimic an already registered Test Agent and access its configuration including associated inventory detail...
Juniper Paragon Active Assurance Control Center
Fedoraproject Fedora 35
NA
CVE-2013-6964
Cisco WebEx Meeting Center allows remote authenticated users to bypass access control and inject content from a different WebEx site via unspecified vectors, aka Bug ID CSCul36197.
Cisco Webex Meeting Center -
5.4
CVSSv3
CVE-2016-5943
IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x prior to 5.2.11 allows remote authenticated users to bypass intended access restrictions, and read task details or edit properties, via unspecified vectors.
Ibm Spectrum Control 5.2.2
Ibm Spectrum Control 5.2.3
Ibm Spectrum Control 5.2.4
Ibm Spectrum Control 5.2.4.1
Ibm Spectrum Control 5.2.0
Ibm Spectrum Control 5.2.1.1
Ibm Spectrum Control 5.2.5
Ibm Spectrum Control 5.2.6
Ibm Spectrum Control 5.2.7.1
Ibm Spectrum Control 5.2.1
Ibm Spectrum Control 5.2.5.1
Ibm Spectrum Control 5.2.7
Ibm Spectrum Control 5.2.10
Ibm Spectrum Control 5.2.10.1
Ibm Spectrum Control 5.2.8
Ibm Spectrum Control 5.2.9
NA
CVE-2007-1819
Stack-based buffer overflow in the SPIDERLib.Loader ActiveX control (Spider90.ocx) 9.1.0.4353 in TestDirector (TD) for Mercury Quality Center 9.0 before Patch 12.1, and 8.2 SP1 before Patch 32, allows remote malicious users to execute arbitrary code via a long ProgColor property.
Hp Mercury Quality Center 9.0
Hp Mercury Quality Center 8.2
2 EDB exploits
5.8
CVSSv3
CVE-2018-0384
A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenticated, remote malicious user to bypass a URL-based access control policy that is configured to block traffic for an affected system. The vulnerability exists because the affected s...
Cisco Firepower Management Center 6.1.0
Cisco Firepower Management Center 6.2.0
Cisco Firepower Management Center 6.2.1
Cisco Firepower Management Center 6.2.2
Cisco Firepower Management Center 6.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »