Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
database security vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2021-31831
Incorrect access to deleted scripts vulnerability in McAfee Database Security (DBSec) before 4.8.2 allows a remote authenticated malicious user to gain access to signed SQL scripts which have been marked as deleted or expired within the administrative console. This access was onl...
Mcafee Database Security
4.8
CVSSv3
CVE-2021-31830
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in McAfee Database Security (DBSec) before 4.8.2 allows an administrator to embed JavaScript code when configuring the name of a database to be monitored. This would be tr...
Mcafee Database Security
4.5
CVSSv3
CVE-2021-23896
Cleartext Transmission of Sensitive Information vulnerability in the administrator interface of McAfee Database Security (DBSec) before 4.8.2 allows an administrator to view the unencrypted password of the McAfee Insights Server used to pass data to the Insights Server. This user...
Mcafee Database Security
8.8
CVSSv3
CVE-2021-23894
Deserialization of untrusted data vulnerability in McAfee Database Security (DBSec) before 4.8.2 allows a remote unauthenticated malicious user to create a reverse shell with administrator privileges on the DBSec server via carefully constructed Java serialized object sent to the...
Mcafee Database Security
8.2
CVSSv3
CVE-2016-0235
IBM Security Guardium Database Activity Monitor 10 allows local users to have unspecified impact by leveraging administrator access to a hardcoded password, related to use on GRUB systems. IBM X-Force ID: 110326.
Ibm Security Guardium Database Activity Monitor 10.0
5.5
CVSSv3
CVE-2016-0237
IBM Security Guardium Database Activity Monitor 10 allows local users to obtain sensitive information by reading cached browser data. IBM X-Force ID: 110328.
Ibm Security Guardium Database Activity Monitor 10.0
7.5
CVSSv3
CVE-2020-5360
Dell BSAFE Micro Edition Suite, versions before 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting in undefined behaviour, or a crash of the affected systems.
Dell Bsafe Micro-edition-suite
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
Oracle Database 18c
Oracle Database 19c
Oracle Http Server 11.1.1.9.0
Oracle Http Server 12.1.3.0
Oracle Http Server 12.2.1.4.0
Oracle Security Service 11.1.1.9.0
Oracle Security Service 12.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 11.1.1.9.0
Oracle Weblogic Server Proxy Plug-in 12.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
7.5
CVSSv3
CVE-2020-26185
Dell BSAFE Micro Edition Suite, versions before 4.5.1, contain a Buffer Over-Read Vulnerability.
Dell Bsafe Micro-edition-suite
Oracle Http Server 12.2.1.3.0
Oracle Security Service 12.2.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Database 12.1.0.2
Oracle Database 19c
Oracle Http Server 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
Oracle Database 21c
8.1
CVSSv3
CVE-2020-35164
Dell BSAFE Crypto-C Micro Edition, versions prior to 4.1.5, and Dell BSAFE Micro Edition Suite, versions prior to 4.6, contain an Observable Timing Discrepancy Vulnerability.
Dell Bsafe Crypto-c-micro-edition
Dell Bsafe Micro-edition-suite
Oracle Http Server 12.2.1.3.0
Oracle Security Service 12.2.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Database 12.1.0.2
Oracle Database 19c
Oracle Http Server 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
Oracle Database 21c
9.8
CVSSv3
CVE-2020-35166
Dell BSAFE Crypto-C Micro Edition, versions prior to 4.1.5, and Dell BSAFE Micro Edition Suite, versions prior to 4.6, contain an Observable Timing Discrepancy Vulnerability.
Dell Bsafe Crypto-c-micro-edition
Dell Bsafe Micro-edition-suite
Oracle Http Server 12.2.1.3.0
Oracle Security Service 12.2.1.3.0
Oracle Security Service 12.2.1.4.0
Oracle Database 12.1.0.2
Oracle Database 19c
Oracle Http Server 12.2.1.4.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.3.0
Oracle Weblogic Server Proxy Plug-in 12.2.1.4.0
Oracle Database 21c
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »