Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
enterprise vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-49572
A vulnerability has been discovered in VX Search Enterprise affecting version 10.2.14 that could allow an malicious user to execute persistent XSS through /setup_odbc in odbc_data_source, odbc_user and odbc_password parameters. This vulnerability could allow an malicious user to ...
NA
CVE-2023-49573
A vulnerability has been discovered in VX Search Enterprise affecting version 10.2.14 that could allow an malicious user to execute persistent XSS through /add_command_action in action_value. This vulnerability could allow an malicious user to store malicious JavaScript payloads ...
NA
CVE-2023-49574
A vulnerability has been discovered in VX Search Enterprise affecting version 10.2.14 that could allow an malicious user to execute persistent XSS through /add_job in job_name. This vulnerability could allow an malicious user to store malicious JavaScript payloads on the system t...
NA
CVE-2023-49575
A vulnerability has been discovered in VX Search Enterprise affecting version 10.2.14 that could allow an malicious user to execute persistent XSS through /setup_smtp in smtp_server, smtp_user, smtp_password and smtp_email_address parameters. This vulnerability could allow an mal...
NA
CVE-2024-29849
Veeam Backup Enterprise Manager allows unauthenticated users to log in as any user to enterprise manager web interface.
2 Articles
NA
CVE-2024-29850
Veeam Backup Enterprise Manager allows account takeover via NTLM relay.
1 Article
NA
CVE-2024-29851
Veeam Backup Enterprise Manager allows high-privileged users to steal NTLM hash of Enterprise manager service account.
1 Article
NA
CVE-2024-29852
Veeam Backup Enterprise Manager allows high-privileged users to read backup session logs.
NA
CVE-2024-31894
IBM App Connect Enterprise 12.0.1.0 up to and including 12.0.12.1 could allow an authenticated user to obtain sensitive user information using an expired access token. IBM X-Force ID: 288175.
NA
CVE-2024-31895
IBM App Connect Enterprise 12.0.1.0 up to and including 12.0.12.1 could allow an authenticated user to obtain sensitive user information using an expired access token. IBM X-Force ID: 288176.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »