Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infrastructure vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2022-29618
Due to insufficient input validation, SAP NetWeaver Development Infrastructure (Design Time Repository) - versions 7.30, 7.31, 7.40, 7.50, allows an unauthenticated malicious user to inject script into the URL and execute code in the user’s browser. On successful exploitati...
Sap Netweaver Development Infrastructure 7.30
Sap Netweaver Development Infrastructure 7.31
Sap Netweaver Development Infrastructure 7.40
Sap Netweaver Development Infrastructure 7.50
490
VMScore
CVE-2016-1358
Cisco Prime Infrastructure 2.2, 3.0, and 3.1(0.0) allows remote authenticated users to read arbitrary files or cause a denial of service via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) ...
Cisco Prime Infrastructure 3.0
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 3.1
578
VMScore
CVE-2018-2660
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 7.3.5.x and 8.0.x. Easily exploitable vulnerability allows low privileged attac...
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.1.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.2.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.3.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.4.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.2.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.0.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.3.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.1.0.0
516
VMScore
CVE-2018-2661
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 7.3.5.x and 8.0.x. Easily exploitable vulnerability allows unauthenticated atta...
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.2.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.2.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.0.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.3.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.5.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.4.0.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.3.0.0
Oracle Financial Services Analytical Applications Infrastructure 7.3.5.1.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.1.0.0
668
VMScore
CVE-2018-13821
A lack of authentication, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows remote malicious users to conduct a variety of attacks, including file reading/writing.
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5.1
445
VMScore
CVE-2018-13819
A hardcoded secret key, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows malicious users to access sensitive information.
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5.1
445
VMScore
CVE-2018-13820
A hardcoded passphrase, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows malicious users to access sensitive information.
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.5.1
383
VMScore
CVE-2021-33691
NWDI Notification Service versions - 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.SAP NetWeaver Development Infrastructure Notification Service allows a threat actor to send crafted scripts to a victi...
Sap Netweaver Development Infrastructure 7.31
Sap Netweaver Development Infrastructure 7.40
Sap Netweaver Development Infrastructure 7.50
NA
CVE-2023-21901
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 8.0.7, 8.0.8, 8.0.9, 8.1.0, 8.1.1 and 8.1.2. Easily exploitable vulnerabil...
Oracle Financial Services Analytical Applications Infrastructure 8.0.7
Oracle Financial Services Analytical Applications Infrastructure 8.1.1
Oracle Financial Services Analytical Applications Infrastructure 8.1.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.8
Oracle Financial Services Analytical Applications Infrastructure 8.0.9
Oracle Financial Services Analytical Applications Infrastructure 8.1.2
605
VMScore
CVE-2015-6262
Cross-site request forgery (CSRF) vulnerability in Cisco Prime Infrastructure 1.2(0.103) and 2.0(0.0) allows remote malicious users to hijack the authentication of arbitrary users, aka Bug IDs CSCum49054 and CSCum49059.
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »