Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infrastructure vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2022-29618
Due to insufficient input validation, SAP NetWeaver Development Infrastructure (Design Time Repository) - versions 7.30, 7.31, 7.40, 7.50, allows an unauthenticated malicious user to inject script into the URL and execute code in the user’s browser. On successful exploitati...
Sap Netweaver Development Infrastructure 7.30
Sap Netweaver Development Infrastructure 7.31
Sap Netweaver Development Infrastructure 7.40
Sap Netweaver Development Infrastructure 7.50
5.5
CVSSv2
CVE-2016-1358
Cisco Prime Infrastructure 2.2, 3.0, and 3.1(0.0) allows remote authenticated users to read arbitrary files or cause a denial of service via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) ...
Cisco Prime Infrastructure 3.0
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 3.1
6.5
CVSSv2
CVE-2018-2660
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 7.3.5.x and 8.0.x. Easily exploitable vulnerability allows low privileged attac...
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.1.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.2.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.3.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.4.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.2.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.0.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.3.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.1.0.0
5.8
CVSSv2
CVE-2018-2661
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 7.3.5.x and 8.0.x. Easily exploitable vulnerability allows unauthenticated atta...
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.2.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.2.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.0.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.3.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.4.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.3.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.1.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.1.0.0
4.3
CVSSv2
CVE-2021-33691
NWDI Notification Service versions - 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.SAP NetWeaver Development Infrastructure Notification Service allows a threat actor to send crafted scripts to a victi...
Sap Netweaver Development Infrastructure 7.31
Sap Netweaver Development Infrastructure 7.40
Sap Netweaver Development Infrastructure 7.50
5
CVSSv2
CVE-2018-13819
A hardcoded secret key, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows malicious users to access sensitive information.
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5.1
5
CVSSv2
CVE-2018-13820
A hardcoded passphrase, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows malicious users to access sensitive information.
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.5.1
7.5
CVSSv2
CVE-2018-13821
A lack of authentication, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows remote malicious users to conduct a variety of attacks, including file reading/writing.
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5.1
NA
CVE-2023-21901
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 8.0.7, 8.0.8, 8.0.9, 8.1.0, 8.1.1 and 8.1.2. Easily exploitable vulnerabil...
Oracle Financial Services Analytical Applications Infrastructure 8.0.7
Oracle Financial Services Analytical Applications Infrastructure 8.1.1
Oracle Financial Services Analytical Applications Infrastructure 8.1.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.8
Oracle Financial Services Analytical Applications Infrastructure 8.0.9
Oracle Financial Services Analytical Applications Infrastructure 8.1.2
6.8
CVSSv2
CVE-2015-6262
Cross-site request forgery (CSRF) vulnerability in Cisco Prime Infrastructure 1.2(0.103) and 2.0(0.0) allows remote malicious users to hijack the authentication of arbitrary users, aka Bug IDs CSCum49054 and CSCum49059.
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »