Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
operations manager vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2022-26483
An issue exists in Veritas InfoScale Operations Manager (VIOM) prior to 7.4.2 Patch 600 and 8.x prior to 8.0.0 Patch 100. A reflected cross-site scripting (XSS) vulnerability in admin/cgi-bin/listdir.pl allows authenticated remote administrators to inject arbitrary web script or ...
Veritas Infoscale Operations Manager
Veritas Infoscale Operations Manager 8.0.0
6.8
CVSSv2
CVE-2022-26484
An issue exists in Veritas InfoScale Operations Manager (VIOM) prior to 7.4.2 Patch 600 and 8.x prior to 8.0.0 Patch 100. The web server fails to sanitize admin/cgi-bin/rulemgr.pl/getfile/ input data, allowing a remote authenticated administrator to read arbitrary files on the sy...
Veritas Infoscale Operations Manager
Veritas Infoscale Operations Manager 8.0.0
4
CVSSv2
CVE-2018-11046
Pivotal Operations Manager, versions 2.1.x before 2.1.6 and version 2.0.14, includes NGINX packages that lacks security vulnerability patches. An attacker with access to the NGINX processes and knowledge of how to exploit the unpatched vulnerabilities may be able to impact Operat...
Pivotal Software Operations Manager
Pivotal Software Operations Manager 2.0.14
4.3
CVSSv2
CVE-2014-3898
Cross-site scripting (XSS) vulnerability in Fujitsu ServerView Operations Manager 5.00.09 up to and including 6.30.05 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Fujitsu Serverview Operations Manager 6.30.05
Fujitsu Serverview Operations Manager 5.00.09
NA
CVE-2022-33640
System Center Operations Manager: Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability
Microsoft System Center Operations Manager 2016
Microsoft System Center Operations Manager 2019
Microsoft System Center Operations Manager 2022
Microsoft Open Management Infrastructure
NA
CVE-2022-38754
A potential vulnerability has been identified in Micro Focus Operations Bridge - Containerized. The vulnerability could be exploited by a malicious authenticated OBM (Operations Bridge Manager) user to run Java Scripts in the browser context of another OBM user. Please note: The ...
Microfocus Operations Bridge
Microfocus Operations Bridge Manager
4
CVSSv2
CVE-2021-22022
The vRealize Operations Manager API (8.x before 8.5) contains an arbitrary file read vulnerability. A malicious actor with administrative access to vRealize Operations Manager API can read any arbitrary file on server leading to information disclosure.
Vmware Cloud Foundation
Vmware Vrealize Operations Manager 7.5.0
Vmware Vrealize Operations Manager
Vmware Vrealize Suite Lifecycle Manager
6.5
CVSSv2
CVE-2021-22023
The vRealize Operations Manager API (8.x before 8.5) has insecure object reference vulnerability. A malicious actor with administrative access to vRealize Operations Manager API may be able to modify other users information leading to an account takeover.
Vmware Cloud Foundation
Vmware Vrealize Operations Manager 7.5.0
Vmware Vrealize Operations Manager
Vmware Vrealize Suite Lifecycle Manager
5
CVSSv2
CVE-2021-22024
The vRealize Operations Manager API (8.x before 8.5) contains an arbitrary log-file read vulnerability. An unauthenticated malicious actor with network access to the vRealize Operations Manager API can read any log file resulting in sensitive information disclosure.
Vmware Cloud Foundation
Vmware Vrealize Operations Manager 7.5.0
Vmware Vrealize Operations Manager
Vmware Vrealize Suite Lifecycle Manager
5
CVSSv2
CVE-2021-22025
The vRealize Operations Manager API (8.x before 8.5) contains a broken access control vulnerability leading to unauthenticated API access. An unauthenticated malicious actor with network access to the vRealize Operations Manager API can add new nodes to existing vROps cluster.
Vmware Cloud Foundation
Vmware Vrealize Operations Manager 7.5.0
Vmware Vrealize Operations Manager
Vmware Vrealize Suite Lifecycle Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »