Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
data virtualization vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2020-9415
The TIBCO Data Virtualization Server component of TIBCO Software Inc.'s TIBCO Data Virtualization and TIBCO Data Virtualization for AWS Marketplace contains a vulnerability that theoretically allows a malicious authenticated user to download any arbitrary file from the affec...
Tibco Data Virtualization For Aws Marketplace
Tibco Data Virtualization 8.1.0
Tibco Data Virtualization 8.1.1
Tibco Data Virtualization 8.2.0
Tibco Data Virtualization 8.0.0
Tibco Data Virtualization
2.1
CVSSv2
CVE-2021-35500
The Data Virtualization Server component of TIBCO Software Inc.'s TIBCO Data Virtualization, TIBCO Data Virtualization, TIBCO Data Virtualization, and TIBCO Data Virtualization for AWS Marketplace contains a difficult to exploit vulnerability that allows a low privileged att...
Tibco Data Virtualization
Tibco Data Virtualization 8.4.0
Tibco Data Virtualization 8.5.0
Tibco Data Virtualization For Aws Marketplace
4
CVSSv2
CVE-2021-38971
IBM Data Virtualization on Cloud Pak for Data 1.3.0, 1.4.1, 1.5.0, 1.7.1 and 1.7.3 could allow an authorized user to bypass data masking rules and obtain sensitve information. IBM X-Force ID: 212620.
Ibm Data Virtualization On Cloud Pak For Data 1.4.1
Ibm Data Virtualization On Cloud Pak For Data 1.5.0
Ibm Data Virtualization On Cloud Pak For Data
Ibm Data Virtualization On Cloud Pak For Data 1.3.0
9
CVSSv2
CVE-2018-5428
The version control adapters component of TIBCO Data Virtualization (formerly known as Cisco Information Server) contains vulnerabilities that may allow for arbitrary command execution. Affected releases are TIBCO Data Virtualization: 7.0.5; 7.0.6.
Tibco Data Virtualization 7.0.5
Tibco Data Virtualization 7.0.6
NA
CVE-2022-30570
The Column Based Security component of TIBCO Software Inc.'s TIBCO Data Virtualization and TIBCO Data Virtualization for AWS Marketplace contains an easily exploitable vulnerability that allows a low privileged attacker with network access to obtain read access to applicatio...
Tibco Data Virtualization
Tibco Data Virtualization For Aws Marketplace
5
CVSSv2
CVE-2014-0171
XML external entity (XXE) vulnerability in StaxXMLFactoryProvider2 in Odata4j, as used in Red Hat JBoss Data Virtualization prior to 6.0.0 patch 4, allows remote malicious users to read arbitrary files via a crafted request to a REST endpoint.
Redhat Jboss Data Virtualization
Odata4j Project Odata4j -
4.3
CVSSv2
CVE-2014-0170
Teiid prior to 8.4.3 and prior to 8.7 and Red Hat JBoss Data Virtualization 6.0.0 before patch 3 allows remote malicious users to read arbitrary files via a crafted request to a REST endpoint, related to an XML External Entity (XXE) issue.
Redhat Jboss Data Virtualization
Jboss Teiid
Jboss Teiid 8.4
4.3
CVSSv2
CVE-2017-2658
It exists that the Dashbuilder login page as used in Red Hat JBoss BPM Suite prior to 6.4.2 and Red Hat JBoss Data Virtualization & Services prior to 6.4.3 could be opened in an IFRAME, which made it possible to intercept and manipulate requests. An attacker could use this fl...
Redhat Jboss Data Virtualization \\& Services
Redhat Jboss Bpm Suite
5
CVSSv2
CVE-2019-3888
A vulnerability was found in Undertow web server prior to 2.0.21. An information exposure of plain text credentials through log files because Connectors.executeRootHandler:402 logs the HttpServerExchange object at ERROR level using UndertowLogger.REQUEST_LOGGER.undertowRequestFai...
Redhat Undertow
Redhat Virtualization 4.0
Redhat Virtualization Host 4.0
Redhat Jboss Data Grid -
Redhat Openshift Application Runtimes -
Netapp Active Iq Unified Manager -
5
CVSSv2
CVE-2019-14818
A flaw was found in all dpdk version 17.x.x prior to 17.11.8, 16.x.x prior to 16.11.10, 18.x.x prior to 18.11.4 and 19.x.x prior to 19.08.1 where a malicious master, or a container with access to vhost_user socket, can send specially crafted VRING_SET_NUM messages, resulting in a...
Dpdk Data Plane Development Kit
Redhat Enterprise Linux Fast Datapath 7.0
Redhat Openstack 10
Redhat Enterprise Linux Fast Datapath 8.0
Redhat Virtualization Eus 4.2
Fedoraproject Fedora 31
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »