Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
network operations vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2016-3737
The server in Red Hat JBoss Operations Network (JON) prior to 3.3.6 allows remote malicious users to execute arbitrary code via a crafted HTTP request, related to message deserialization.
Redhat Jboss Operations Network
6.8
CVSSv2
CVE-2019-3834
It was found that the fix for CVE-2014-0114 had been reverted in JBoss Operations Network 3 (JON). This flaw allows malicious users to manipulate ClassLoader properties on a vulnerable server. Exploits that have been published rely on ClassLoader properties that are exposed such ...
Redhat Jboss Operations Network
4.3
CVSSv2
CVE-2015-3267
Cross-site scripting (XSS) vulnerability in the 404 error page in Red Hat JBoss Operations Network prior to 3.3.3 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Redhat Jboss Operations Network
5.2
CVSSv2
CVE-2010-0737
A missing permission check was found in The CLI in JBoss Operations Network prior to 2.3.1 does not properly check permissions, which allows JBoss ON users to perform management tasks and configuration changes with the privileges of the administrator user.
Redhat Jboss Operations Network
2.1
CVSSv2
CVE-2013-4293
The server in Red Hat JBoss Operations Network (JON) 3.1.2 logs passwords in plaintext, which allows local users to obtain sensitive information by reading the log files.
Redhat Jboss Operations Network 3.1.2
3.2
CVSSv2
CVE-2013-4373
The storeFiles method in JPADriftServerBean in Red Hat JBoss Operations Network (JON) 3.1.2 allows local users to load arbitrary drift files into a server by writing the files to the temporary directory that is used to unpack zip files.
Redhat Jboss Operations Network 3.1.2
4
CVSSv2
CVE-2014-7853
The JBoss Application Server (WildFly) JacORB subsystem in Red Hat JBoss Enterprise Application Platform (EAP) prior to 6.3.3 does not properly assign socket-binding-ref sensitivity classification to the security-domain attribute, which allows remote authenticated users to obtain...
Redhat Jboss Operations Network 3.3.1
Redhat Jboss Enterprise Application Platform
3.6
CVSSv2
CVE-2013-4374
An insecurity temporary file vulnerability exists in RHQ Mongo DB Drift Server through 2013-09-25 when unpacking zipped files.
Redhat Rhq Mongo Db Drift Server
Redhat Jboss Operations Network 3.1
6.5
CVSSv2
CVE-2019-13657
CA Performance Management 3.5.x, 3.6.x prior to 3.6.9, and 3.7.x prior to 3.7.4 have a default credential vulnerability that can allow a remote malicious user to execute arbitrary commands and compromise system security.
Broadcom Ca Performance Management 3.5.0
Broadcom Ca Performance Management
Broadcom Network Operations
7.5
CVSSv2
CVE-2018-6498
Remote Code Execution in the following products Hybrid Cloud Management Containerized Suite HCM2017.11, HCM2018.02, HCM2018.05, Operations Bridge Containerized Suite 2017.11, 2018.02, 2018.05, Data Center Automation Containerized Suite 2017.01 until 2018.05, Service Management Au...
Microfocus Data Center Automation 2017.05
Microfocus Data Center Automation 2017.08
Microfocus Data Center Automation 2017.09
Microfocus Data Center Automation 2017.11
Microfocus Data Center Automation 2018.02
Microfocus Data Center Automation 2018.05
Microfocus Data Center Automation 2017.01
Microfocus Service Management Automation 2018.05
Microfocus Service Management Automation 2018.02
Microfocus Service Management Automation 2017.11
Microfocus Network Operations Management 2018.02
Microfocus Network Operations Management 2017.11
Microfocus Hybrid Cloud Management 2017.11
Microfocus Hybrid Cloud Management 2018.02
Microfocus Hybrid Cloud Management 2018.05
Microfocus Operations Bridge 2017.11
Microfocus Operations Bridge 2018.02
Microfocus Operations Bridge 2018.05
Microfocus Network Operations Management 2018.05
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »