Vulmon Recent Vulnerabilities Trends Blog About Contact

secure global desktop vulnerabilities and exploits

(subscribe to this query)

9.8
CVSSv3
CVE-2016-3613
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 4.63, 4.71, and 5.2 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to OpenSSL....
Oracle Secure Global Desktop 4.63Oracle Secure Global Desktop 4.71Oracle Secure Global Desktop 5.2
NA
CVE-2014-0419
Unspecified vulnerability in the Oracle Secure Global Desktop (SGD) component in Oracle Virtualization SGD before 4.63 with December 2013 PSU, 4.71, 5.0 with December 2013 PSU, and 5.10 allows remote attackers to affect confidentiality, integrity, and availability via unknown...
Oracle Virtualization Secure Global Desktop 4.63Oracle Virtualization Secure Global Desktop 4.71Oracle Virtualization Secure Global Desktop 5.0Oracle Virtualization Secure Global Desktop 5.10
NA
CVE-2006-4959
Sun Secure Global Desktop (SSGD, aka Tarantella) before 4.3 allows remote attackers to obtain sensitive information, including hostnames, versions, and settings details, via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3)...
Sun Secure Global Desktop 3.42Sun Secure Global Desktop 4.0
NA
CVE-2006-4958
Multiple cross-site scripting (XSS) vulnerabilities in Sun Secure Global Desktop (SSGD, aka Tarantella) before 4.20.983 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3)...
Sun Secure Global Desktop 3.42Sun Secure Global Desktop 4.0
9.6
CVSSv3
CVE-2016-5580
Unspecified vulnerability in the Secure Global Desktop component in Oracle Virtualization 4.7 and 5.2 allows remote authenticated users to affect confidentiality and availability via vectors through Web Services....
Oracle Secure Global Desktop 4.7Oracle Secure Global Desktop 5.2
NA
CVE-2014-4232
Unspecified vulnerability in the Oracle Secure Global Desktop (SGD) component in Oracle Virtualization 4.63, 4.71, 5.0, and 5.1 allows remote attackers to affect integrity via unknown vectors related to Workspace Web Application, a different vulnerability than CVE-2014-2463....
Oracle Virtualization 4.63Oracle Virtualization 4.71Oracle Virtualization 5.0Oracle Virtualization 5.1Oracle Virtualization Secure Global Desktop 4.63Oracle Virtualization Secure Global Desktop 4.71Oracle Virtualization Secure Global Desktop 5.0Oracle Virtualization Secure Global Desktop 5.10
NA
CVE-2005-0486
Tarantella Secure Global Desktop Enterprise Edition 4.00 and 3.42, and Tarantella Enterprise 3 3.40 and 3.30, when using RSA SecurID and multiple users have the same username, reveals sensitive information during authentication, which allows remote attackers to identify valid...
Tarantella Secure Global Desktop Enterprise 3.42Tarantella Secure Global Desktop Enterprise 4.0Tarantella Tarantella Enterprise 3.30Tarantella Tarantella Enterprise 3.40
NA
CVE-2016-0501
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.2 allows remote attackers to affect availability via vectors related to SGD Core....
Oracle Secure Global Desktop 5.2
6.1
CVSSv3
CVE-2018-19439
XSS exists in the Administration Console in Oracle Secure Global Desktop 4.4 20080807152602 (but was fixed in later versions including 5.4). helpwindow.jsp has reflected XSS via all parameters, as demonstrated by the sgdadmin/faces/com_sun_web_ui/help/helpwindow.jsp windowTitle...
Oracle Secure Global Desktop 4.4
5.9
CVSSv3
CVE-2018-1304
The URL pattern of "" (the empty string) which exactly maps to the context root was not correctly handled in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 when used as part of a security constraint definition. This caused the...
Apache TomcatApache Tomcat 8.0.0Apache Tomcat 9.0.0Redhat Jboss Enterprise Application Platform 6Redhat Jboss Enterprise Application Platform 6.4Redhat Jboss Enterprise Web Server 3.0.0Debian Debian Linux 7.0Debian Debian Linux 8.0Debian Debian Linux 9.0Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 17.10Canonical Ubuntu Linux 18.04Oracle Fusion Middleware 12.2.1.3.0Oracle Hospitality Guest Access 4.2.0Oracle Hospitality Guest Access 4.2.1Oracle Micros Relate Crm Software 11.4Oracle Secure Global Desktop 5.3Oracle Secure Global Desktop 5.4Redhat Jboss Middleware 1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalationTCPCVE-2020-4865CVE-2021-3297CVE-2018-15473CVE-2021-3317CVE-2021-23240denial of serviceCVE-2020-16107