Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
network performance monitor vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-3014
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Performance Monitor). Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromis...
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Peoplesoft Enterprise Peopletools 8.56
NA
CVE-2015-0639
The Common Flow Table (CFT) feature in Cisco IOS XE 3.6 and 3.7 prior to 3.7.1S, 3.8 prior to 3.8.0S, 3.9 prior to 3.9.0S, 3.10 prior to 3.10.0S, 3.11 prior to 3.11.0S, 3.12 prior to 3.12.0S, 3.13 prior to 3.13.0S, 3.14 prior to 3.14.0S, and 3.15 prior to 3.15.0S, when MMON or NB...
Cisco Ios Xe 3.7s.1
Cisco Ios Xe 3.7s.3
Cisco Ios Xe 3.6s.0
Cisco Ios Xe 3.6s.1
Cisco Ios Xe 3.6s.2
Cisco Ios Xe 3.7s
Cisco Ios Xe 3.7s.4
Cisco Ios Xe 3.7s.5
Cisco Ios Xe 3.6s
Cisco Ios Xe 3.7s.0
Cisco Ios Xe 3.7s.2
5.9
CVSSv3
CVE-2021-45105
Apache Log4j2 versions 2.0-alpha1 up to and including 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted strin...
Apache Log4j
Netapp Cloud Manager -
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Sonicwall Network Security Manager
Sonicwall Email Security
Sonicwall Web Application Firewall
Sonicwall 6bk1602-0aa12-0tp0 Firmware
Sonicwall 6bk1602-0aa22-0tp0 Firmware
Sonicwall 6bk1602-0aa32-0tp0 Firmware
Sonicwall 6bk1602-0aa42-0tp0 Firmware
Sonicwall 6bk1602-0aa52-0tp0 Firmware
Oracle E-business Suite 12.2
Oracle Retail Back Office 14.1
Oracle Weblogic Server 12.2.1.3.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Webcenter Sites 12.2.1.3.0
Oracle Managed File Transfer 12.2.1.3.0
Oracle Retail Order Broker 16.0
Oracle Retail Integration Bus 14.1.3
Oracle Retail Returns Management 14.1
Oracle Retail Central Office 14.1
74 Github repositories
5 Articles
6.1
CVSSv3
CVE-2020-11022
In jQuery versions greater than or equal to 1.2 and prior to 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuer...
Jquery Jquery
Drupal Drupal
Debian Debian Linux 9.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Oracle Weblogic Server 12.1.3.0.0
Oracle Jdeveloper 11.1.1.9.0
Oracle Retail Back Office 14.1
Oracle Retail Back Office 14.0
Oracle Peoplesoft Enterprise Peopletools 8.56
Oracle Weblogic Server 10.3.6.0.0
Oracle Communications Webrtc Session Controller 7.2
Oracle Weblogic Server 12.2.1.3.0
Oracle Agile Product Lifecycle Management For Process 6.2.0.0
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Application Testing Suite 13.3.0.1
Oracle Retail Returns Management 14.0
Oracle Retail Returns Management 14.1
Oracle Jdeveloper 12.2.1.3.0
Oracle Policy Automation Connector For Siebel 10.4.6
Oracle Financial Services Market Risk Measurement And Management 8.0.6
13 Github repositories
NA
CVE-2015-0640
The high-speed logging (HSL) feature in Cisco IOS XE 2.x and 3.x prior to 3.10.4S, 3.11 prior to 3.11.3S, 3.12 prior to 3.12.1S, 3.13 prior to 3.13.0S, 3.14 prior to 3.14.0S, and 3.15 prior to 3.15.0S allows remote malicious users to cause a denial of service (device reload) via ...
Cisco Ios Xe 3.1s.1
Cisco Ios Xe 3.1s.3
Cisco Ios Xe 3.5s
Cisco Ios Xe 3.5s.0
Cisco Ios Xe 3.7s.0
Cisco Ios Xe 3.7s.2
Cisco Ios Xe 3.9s.1
Cisco Ios Xe 3.10s.0
Cisco Ios Xe 3.12s.0
Cisco Ios Xe 3.10s.3
Cisco Ios Xe 3.1s.5
Cisco Ios Xe 3.2s.3
Cisco Ios Xe 3.2s.1
Cisco Ios Xe 3.2s.2
Cisco Ios Xe 3.3s.1
Cisco Ios Xe 3.3s.2
Cisco Ios Xe 3.7s.3
Cisco Ios Xe 3.7s.4
Cisco Ios Xe 3.8s
Cisco Ios Xe 3.8s.0
Cisco Ios Xe 3.8s.1
Cisco Ios Xe 3.7s.6
NA
CVE-2015-0641
Cisco IOS XE 2.x and 3.x prior to 3.9.0S, 3.10 prior to 3.10.0S, 3.11 prior to 3.11.0S, 3.12 prior to 3.12.0S, 3.13 prior to 3.13.0S, 3.14 prior to 3.14.0S, and 3.15 prior to 3.15.0S allows remote malicious users to cause a denial of service (device reload) via crafted IPv6 packe...
Cisco Ios Xe 3.1s.1
Cisco Ios Xe 3.1s.3
Cisco Ios Xe 3.4s.1
Cisco Ios Xe 3.6s
Cisco Ios Xe 3.6s.0
Cisco Ios Xe 3.6s.2
Cisco Ios Xe 3.7s.3
Cisco Ios Xe 3.8s
Cisco Ios Xe 3.7s.6
Cisco Ios Xe 3.1s.5
Cisco Ios Xe 3.2s.1
Cisco Ios Xe 3.2s.2
Cisco Ios Xe 3.3s.1
Cisco Ios Xe 3.3s.2
Cisco Ios Xe 3.7s.0
Cisco Ios Xe 3.7s.1
Cisco Ios Xe 3.4s.5
Cisco Ios Xe 3.4s.6
Cisco Ios Xe 3.2s.3
Cisco Ios Xe 3.7s.7
Cisco Ios Xe 3.1s.0
Cisco Ios Xe 3.2s.0
NA
CVE-2015-0644
AppNav in Cisco IOS XE 3.8 up to and including 3.10 prior to 3.10.3S, 3.11 prior to 3.11.3S, 3.12 prior to 3.12.1S, 3.13 prior to 3.13.0S, 3.14 prior to 3.14.0S, and 3.15 prior to 3.15.0S allows remote malicious users to execute arbitrary code or cause a denial of service (device...
Cisco Ios Xe 3.9s.2
Cisco Ios Xe 3.11s.0
Cisco Ios Xe 3.9s.1
Cisco Ios Xe 3.9s.0
Cisco Ios Xe 3.10s.0
Cisco Ios Xe 3.10s.1
Cisco Ios Xe 3.10s.2
Cisco Ios Xe 3.8s Base
Cisco Ios Xe 3.8s.1
Cisco Ios Xe 3.10s.0a
Cisco Ios Xe 3.12s.0
Cisco Ios Xe 3.8s.0
Cisco Ios Xe 3.8s.2
Cisco Ios Xe 3.11s.1
Cisco Ios Xe 3.11s.2
NA
CVE-2015-0645
The Layer 4 Redirect (L4R) feature in Cisco IOS XE 2.x and 3.x prior to 3.10.4S, 3.11 prior to 3.11.3S, 3.12 prior to 3.12.2S, 3.13 prior to 3.13.1S, 3.14 prior to 3.14.0S, and 3.15 prior to 3.15.0S allows remote malicious users to cause a denial of service (device reload) via ma...
Cisco Ios Xe 3.1s.2
Cisco Ios Xe 3.1s.3
Cisco Ios Xe 3.2s.1
Cisco Ios Xe 3.2s.2
Cisco Ios Xe 3.6s.2
Cisco Ios Xe 3.4s.5
Cisco Ios Xe 3.4s.6
Cisco Ios Xe 3.10s.0
Cisco Ios Xe 3.2s.3
Cisco Ios Xe 3.1s.0
Cisco Ios Xe 3.4s.2
Cisco Ios Xe 3.4s.3
Cisco Ios Xe 3.4s.4
Cisco Ios Xe 3.5s.0
Cisco Ios Xe 3.12s.0
Cisco Ios Xe 3.11s.2
Cisco Ios Xe 3.13s.0
Cisco Ios Xe 3.10s.3
Cisco Ios Xe 3.3s.0
Cisco Ios Xe 3.1s.1
Cisco Ios Xe 3.3s.1
Cisco Ios Xe 3.4s.1
5.9
CVSSv3
CVE-2019-1559
If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 by...
Openssl Openssl
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 16.04
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Netapp Hyper Converged Infrastructure -
Netapp Cloud Backup -
Netapp Santricity Smi-s Provider -
Netapp Element Software -
Netapp Snapdrive -
Netapp Snapcenter -
Netapp Storage Automation Store -
Netapp Ontap Select Deploy -
Netapp Steelstore Cloud Integrated Storage -
Netapp Oncommand Unified Manager -
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Storagegrid
Netapp Oncommand Insight -
Netapp Ontap Select Deploy Administration Utility -
Netapp Service Processor -
3 Github repositories
6.1
CVSSv3
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
Redhat Hibernate Validator
Redhat Hibernate Validator 6.1.0
Redhat Single Sign-on -
Redhat Jboss Enterprise Application Platform -
Redhat Jboss Data Grid -
Redhat Openshift Application Runtimes -
Redhat Fuse 1.0
Redhat Jboss Enterprise Application Platform 7.2
Redhat Jboss Enterprise Application Platform 7.3
Netapp Active Iq Unified Manager -
Netapp Element -
Netapp Snapcenter Plug-in -
Netapp Management Services For Element Software And Netapp Hci -
Oracle Flexcube Investor Servicing 12.3.0
Oracle Flexcube Investor Servicing 12.1.0
Oracle Solaris 11
Oracle Flexcube Private Banking 12.1.0
Oracle Insurance Policy Administration J2ee 10.2.0
Oracle Flexcube Private Banking 12.0.0
Oracle Flexcube Investor Servicing 12.0.4
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Integration Bus 13.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »