Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
exchange vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2022-37968
<p>Microsoft has identified a vulnerability affecting the cluster connect feature of Azure Arc-enabled Kubernetes clusters. This vulnerability could allow an unauthenticated user to elevate their privileges and potentially gain administrative control over the Kubernetes clu...
Microsoft Azure Stack Edge -
Microsoft Azure Arc-enabled Kubernetes 1.5.8
Microsoft Azure Arc-enabled Kubernetes 1.6.19
Microsoft Azure Arc-enabled Kubernetes 1.7.18
Microsoft Azure Arc-enabled Kubernetes 1.8.11
1 Article
10
CVSSv3
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1161 Github repositories
28 Articles
9.9
CVSSv3
CVE-2021-27602
SAP Commerce, versions - 1808, 1811, 1905, 2005, 2011, Backoffice application allows certain authorized users to create source rules which are translated to drools rule when published to certain modules within the application. An attacker with this authorization can inject malici...
2 Articles
9.9
CVSSv3
CVE-2021-26867
Windows Hyper-V Remote Code Execution Vulnerability
Microsoft Windows Server 2016 1909
Microsoft Windows 10 1909
Microsoft Windows Server 2016 2004
Microsoft Windows 10 2004
Microsoft Windows Server 2016 20h2
Microsoft Windows 10 20h2
1 Article
9.9
CVSSv3
CVE-2020-1595
<p>A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly protected from unsafe data input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the SharePoint application pool and ...
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Server 2019
1 Article
9.9
CVSSv3
CVE-2020-1210
<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the SharePoint applicati...
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Server 2019
1 Article
9.9
CVSSv3
CVE-2019-11208
The authorization component of TIBCO Software Inc.'s TIBCO API Exchange Gateway, and TIBCO API Exchange Gateway Distribution for TIBCO Silver Fabric contains a vulnerability that theoretically processes OAuth authorization incorrectly, leading to potential escalation of priv...
Tibco Api Exchange Gateway
9.8
CVSSv3
CVE-2024-21410
Microsoft Exchange Server Elevation of Privilege Vulnerability
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
2 Github repositories
3 Articles
9.8
CVSSv3
CVE-2023-24855
Memory corruption in Modem while processing security related configuration before AS Security Exchange.
Qualcomm Ar8035 Firmware -
Qualcomm Fastconnect 6200 Firmware -
Qualcomm Fastconnect 6700 Firmware -
Qualcomm Fastconnect 6900 Firmware -
Qualcomm Fastconnect 7800 Firmware -
Qualcomm Qca6391 Firmware -
Qualcomm Qca8081 Firmware -
Qualcomm Qca8337 Firmware -
Qualcomm Qcc710 Firmware -
Qualcomm Qcm4490 Firmware -
Qualcomm Qcm6490 Firmware -
Qualcomm Qcm8550 Firmware -
Qualcomm Qcn6024 Firmware -
Qualcomm Qcn6224 Firmware -
Qualcomm Qcn6274 Firmware -
Qualcomm Qcn9024 Firmware -
Qualcomm Qcs4490 Firmware -
Qualcomm Qcs6490 Firmware -
Qualcomm Qcs8550 Firmware -
Qualcomm Qfw7114 Firmware -
Qualcomm Qfw7124 Firmware -
Qualcomm Qualcomm Video Collaboration Vc3 Platform Firmware -
9.8
CVSSv3
CVE-2023-21709
Microsoft Exchange Server Elevation of Privilege Vulnerability
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »