Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
data vulnerabilities and exploits
(subscribe to this query)
7.6
CVSSv3
CVE-2024-21985
ONTAP 9 versions before 9.9.1P18, 9.10.1P16, 9.11.1P13, 9.12.1P10 and 9.13.1P4 are susceptible to a vulnerability which could allow an authenticated user with multiple remote accounts with differing roles to perform actions via REST API beyond their intended privilege. Possible a...
Netapp Clustered Data Ontap 9.9.1
Netapp Clustered Data Ontap 9.10.1
Netapp Clustered Data Ontap
Netapp Clustered Data Ontap 9.11.1
Netapp Clustered Data Ontap 9.12.1
Netapp Clustered Data Ontap 9.13.1
6.5
CVSSv3
CVE-2018-11076
Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0 and 7.4.1 and Dell EMC Integrated Data Protection Appliance (IDPA) 2.0 are affected by an information exposure vulnerability. Avamar Java management console's SSL/TLS private key may be leaked in the Avamar Ja...
Dell Emc Integrated Data Protection Appliance 2.0
Dell Emc Avamar 7.4.1
Dell Emc Avamar 7.4.0
Dell Emc Avamar 7.3.0
Dell Emc Avamar 7.2.1
Dell Emc Avamar 7.3.1
Dell Emc Avamar 7.2.0
Vmware Vsphere Data Protection 6.0.7
Vmware Vsphere Data Protection 6.0.8
Vmware Vsphere Data Protection 6.1.0
Vmware Vsphere Data Protection 6.1.1
Vmware Vsphere Data Protection 6.0.3
Vmware Vsphere Data Protection 6.0.5
Vmware Vsphere Data Protection 6.1.3
Vmware Vsphere Data Protection 6.1.5
Vmware Vsphere Data Protection 6.0.0
Vmware Vsphere Data Protection 6.0.1
Vmware Vsphere Data Protection 6.0.2
Vmware Vsphere Data Protection 6.1.6
Vmware Vsphere Data Protection 6.1.7
Vmware Vsphere Data Protection 6.1.8
Vmware Vsphere Data Protection 6.1.9
9.8
CVSSv3
CVE-2020-4427
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 could allow a remote malicious user to bypass security restrictions when configured with SAML authentication. By sending a specially crafted HTTP request, an attacker could exploit this vulnerability to bypass the...
Ibm Data Risk Manager 2.0.2
Ibm Data Risk Manager 2.0.3
Ibm Data Risk Manager 2.0.4
Ibm Data Risk Manager 2.0.5
Ibm Data Risk Manager 2.0.6
Ibm Data Risk Manager 2.0.1
1 Article
9.1
CVSSv3
CVE-2020-4428
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated malicious user to execute arbitrary commands on the system. IBM X-Force ID: 180533.
Ibm Data Risk Manager 2.0.1
Ibm Data Risk Manager 2.0.2
Ibm Data Risk Manager 2.0.3
Ibm Data Risk Manager 2.0.4
Ibm Data Risk Manager 2.0.5
Ibm Data Risk Manager 2.0.6
1 Article
9.8
CVSSv3
CVE-2020-4429
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 contains a default password for an IDRM administrative account. A remote attacker could exploit this vulnerability to login and execute arbitrary code on the system with root privileges. IBM X-Force ID: 180534.
Ibm Data Risk Manager 2.0.1
Ibm Data Risk Manager 2.0.2
Ibm Data Risk Manager 2.0.3
Ibm Data Risk Manager 2.0.4
Ibm Data Risk Manager 2.0.5
Ibm Data Risk Manager 2.0.6
1 Article
4.3
CVSSv3
CVE-2020-4430
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request to download arbitrary files from the system. IBM X-Force ID: 180535.
Ibm Data Risk Manager 2.0.1
Ibm Data Risk Manager 2.0.2
Ibm Data Risk Manager 2.0.3
Ibm Data Risk Manager 2.0.4
Ibm Data Risk Manager 2.0.5
Ibm Data Risk Manager 2.0.6
2 Articles
NA
CVE-2014-4632
VMware vSphere Data Protection (VDP) 5.1, 5.5 prior to 5.5.9, and 5.8 prior to 5.8.1 and the proxy client in EMC Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) 6.x and 7.0.x do not properly verify X.509 certificates from vCenter Server SSL servers, which allows man-in-t...
Vmware Vsphere Data Protection 5.5.7
Vmware Vsphere Data Protection 5.5.8
Vmware Vsphere Data Protection 5.5.1
Vmware Vsphere Data Protection 5.5.6
Vmware Vsphere Data Protection 5.1
Vmware Vsphere Data Protection 5.8.0
5.5
CVSSv3
CVE-2021-35500
The Data Virtualization Server component of TIBCO Software Inc.'s TIBCO Data Virtualization, TIBCO Data Virtualization, TIBCO Data Virtualization, and TIBCO Data Virtualization for AWS Marketplace contains a difficult to exploit vulnerability that allows a low privileged att...
Tibco Data Virtualization
Tibco Data Virtualization 8.4.0
Tibco Data Virtualization 8.5.0
Tibco Data Virtualization For Aws Marketplace
4.7
CVSSv3
CVE-2021-27003
Clustered Data ONTAP versions before 9.5P18, 9.6P15, 9.7P14, 9.8P5 and 9.9.1 are missing an X-Frame-Options header which could allow a clickjacking attack.
Netapp Clustered Data Ontap
Netapp Clustered Data Ontap 9.5
Netapp Clustered Data Ontap 9.6
Netapp Clustered Data Ontap 9.7
Netapp Clustered Data Ontap 9.8
5.4
CVSSv3
CVE-2020-8576
Clustered Data ONTAP versions before 9.3P19, 9.5P14, 9.6P9 and 9.7 are susceptible to a vulnerability which when successfully exploited could lead to addition or modification of data or disclosure of sensitive information.
Netapp Clustered Data Ontap 9.3
Netapp Clustered Data Ontap 9.5
Netapp Clustered Data Ontap 9.6
Netapp Clustered Data Ontap 9.7
Netapp Clustered Data Ontap
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »