Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
glassfish vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2022-26119
A improper authentication vulnerability in Fortinet FortiSIEM prior to 6.5.0 allows a local attacker with CLI access to perform operations on the Glassfish server directly via a hardcoded password.
Fortinet Fortisiem 6.4.1
Fortinet Fortisiem 6.4.0
Fortinet Fortisiem
Fortinet Fortisiem 6.2.1
Fortinet Fortisiem 6.2.0
Fortinet Fortisiem 5.4.0
Fortinet Fortisiem 5.2.2
Fortinet Fortisiem 5.2.1
Fortinet Fortisiem 5.0.0
Fortinet Fortisiem 5.0.1
NA
CVE-2013-5816
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2 allows remote malicious users to affect availability via unknown vectors related to Metro.
Oracle Fusion Middleware 2.1.1
Oracle Fusion Middleware 3.1.2
Oracle Fusion Middleware 3.0.1
NA
CVE-2013-1515
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Sun Middleware Products 3.0.1 and 3.1.2 allows remote malicious users to affect integrity via vectors related to ADMIN Interface.
Oracle Sun Middleware Products 3.0.1
Oracle Sun Middleware Products 3.1.2
NA
CVE-2016-0441
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.1.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Embedded Server.
Oracle Fusion Middleware 3.1.2
NA
CVE-2015-0396
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.0.1 and 3.1.2 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors related to Admin Console.
Oracle Fusion Middleware 3.1.2
Oracle Fusion Middleware 3.0.1
7.8
CVSSv3
CVE-2020-10537
An issue exists in Epikur prior to 20.1.1. A Glassfish 4.1 server with a default configuration is running on TCP port 4848. No password is required to access it with the administrator account.
Epikur Epikur
NA
CVE-2014-2609
The Java Glassfish Admin Console in HP Executive Scorecard 9.40 and 9.41 does not require authentication, which allows remote malicious users to execute arbitrary code via a session on TCP port 10001, aka ZDI-CAN-2116.
Hp Executive Scorecard 9.40
Hp Executive Scorecard 9.41
NA
CVE-2011-1503
The XSL Content portlet in Liferay Portal Community Edition (CE) 5.x and 6.x prior to 6.0.6 GA, when Apache Tomcat or Oracle GlassFish is used, allows remote authenticated users to read arbitrary (1) XSL and (2) XML files via a file:/// URL.
Liferay Liferay Portal
NA
CVE-2015-4744
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2; and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0 allows remote malicious users to affect integrit...
Oracle Fusion Middleware 10.3.6
Oracle Fusion Middleware 12.1.1
Oracle Fusion Middleware 12.1.2.0.0
Oracle Fusion Middleware 12.1.3.0.0
Oracle Fusion Middleware 2.1.1
Oracle Fusion Middleware 3.1.2
Oracle Fusion Middleware 3.0.1
NA
CVE-2015-2623
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.0.1 and 3.1.2, and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0, allows remote malicious users to affect integrity via u...
Oracle Fusion Middleware 12.1.3.0.0
Oracle Fusion Middleware 3.1.2
Oracle Fusion Middleware 3.0.1
Oracle Fusion Middleware 10.3.6
Oracle Fusion Middleware 12.1.1
Oracle Fusion Middleware 12.1.2.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »