Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
service bus vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2017-3507
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware (subcomponent: Web Console Design). Supported versions that are affected are 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily "exploitable" vulnerability allows unauthenticated attack...
Oracle Service Bus 12.1.3.0.0
Oracle Service Bus 12.2.1.1.0
Oracle Service Bus 12.2.1.0.0
Oracle Service Bus 12.2.1.2.0
446
VMScore
CVE-2019-2576
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware (subcomponent: Web Container). Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HT...
Oracle Service Bus 12.1.3.0.0
Oracle Service Bus 11.1.1.9.0
Oracle Service Bus 12.2.1.3.0
2 Github repositories
668
VMScore
CVE-2007-0432
BEA AquaLogic Service Bus 2.0, 2.1, and 2.5 does not properly reject malformed request messages to a proxy service, which might allow remote malicious users to bypass authorization policies and route requests to back-end services or conduct other unauthorized activities.
Bea Aqualogic Service Bus 2.0
Bea Aqualogic Service Bus 2.1
Bea Aqualogic Service Bus 2.5
578
VMScore
CVE-2007-0433
Unspecified vulnerability in BEA AquaLogic Enterprise Security 2.0 up to and including 2.0 SP2, 2.1 up to and including 2.1 SP1, and 2.2, when using Active Directory LDAP for authentication, allows remote authenticated users to access the server even after the account has been di...
Bea Aqualogic Service Bus 2.0
Bea Aqualogic Service Bus 2.1
Bea Aqualogic Service Bus 2.2
312
VMScore
CVE-2010-2474
JBoss Enterprise Service Bus (ESB) prior to 4.7 CP02 in JBoss Enterprise SOA Platform prior to 5.0.2 does not properly consider the security domain with which a service is secured, which might allow remote malicious users to gain privileges by executing a service.
Redhat Jboss Enterprise Service Bus
Redhat Jboss Enterprise Service Bus 4.0
Redhat Jboss Enterprise Service Bus 4.2
Redhat Jboss Enterprise Service Bus 4.2.1
Redhat Jboss Enterprise Service Bus 4.3
Redhat Jboss Enterprise Service Bus 4.4
Redhat Jboss Enterprise Service Bus 4.5
Redhat Jboss Enterprise Service Bus 4.6
Redhat Jboss Enterprise Soa Platform 4.2.0
Redhat Jboss Enterprise Soa Platform 4.3.0
Redhat Jboss Enterprise Soa Platform 5.0.0
Redhat Jboss Enterprise Soa Platform 5.0.1
357
VMScore
CVE-2014-2814
Microsoft Service Bus 1.1 on Microsoft Windows Server 2008 R2 SP1 and Server 2012 Gold and R2 allows remote authenticated users to cause a denial of service (AMQP messaging outage) via crafted AMQP messages, aka "Service Bus Denial of Service Vulnerability."
Microsoft Service Bus 1.1
436
VMScore
CVE-2017-10119
Vulnerability in the Oracle Service Bus component of Oracle Fusion Middleware (subcomponent: OSB Web Console Design, Admin). The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compr...
Oracle Service Bus 11.1.1.9.0
445
VMScore
CVE-2012-0687
TIBCO ActiveMatrix Runtime Platform in Service Grid and Service Bus 2.x prior to 2.3.2 and BusinessWorks Service Engine prior to 5.8.2; TIBCO ActiveMatrix Platform in TIBCO Silver Fabric ActiveMatrix Service Grid Distribution 3.1.3, Service Grid and Service Bus 3.x prior to 3.1.5...
Tibco Activematrix Service Grid 3.1.0
Tibco Activematrix Service Bus 2.3.1
Tibco Activematrix Service Bus 2.0.0
Tibco Activematrix Service Bus 3.0.0
Tibco Activematrix Service Bus 3.0.1
Tibco Activematrix Service Bus 2.1.0
Tibco Activematrix Service Grid 2.3.2
Tibco Activematrix Service Bus 2.2.0
Tibco Activematrix Service Grid 2.2.0
Tibco Activematrix Service Grid 2.0.1
Tibco Activematrix Service Grid 3.0.0
Tibco Activematrix Service Grid 2.3.0
Tibco Activematrix Service Grid 2.1.0
Tibco Activematrix Service Grid 2.0.0
Tibco Activematrix Service Grid 2.3.1
Tibco Activematrix Service Bus 2.2.1
Tibco Activematrix Service Bus 2.3.0
Tibco Activematrix Service Grid 3.1.2
Tibco Activematrix Service Grid 3.0.1
Tibco Activematrix Service Bus 2.0.1
Tibco Activematrix Service Grid 2.2.1
Tibco Activematrix Service Bus 2.0.2
312
VMScore
CVE-2018-1384
IBM Business Process Manager 8.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID...
Ibm Business Process Manager 8.5.5.0
Ibm Business Process Manager 8.5.6.2
Ibm Business Process Manager 8.5.0.1
Ibm Business Process Manager 8.0.1.3
Ibm Business Process Manager 7.5.0.0
Ibm Business Process Manager 7.5.1.2
Ibm Business Process Manager 8.5.0.2
Ibm Business Process Manager 7.5.1.0
Ibm Business Process Manager 7.5.0.1
Ibm Business Process Manager 7.5.1.1
Ibm Business Process Manager 8.0.0.0
Ibm Business Process Manager 8.0.1.2
Ibm Business Process Manager 8.5.0.0
Ibm Business Process Manager 8.5.6.1
Ibm Business Process Manager 8.0.1.1
Ibm Business Process Manager 8.0.1.0
Ibm Business Process Manager 8.5.7.0
Ibm Business Process Manager 8.5.6.0
Ibm Websphere Enterprise Service Bus 7.5.0.0
Ibm Websphere Enterprise Service Bus 7.0.0.0
Ibm Websphere Enterprise Service Bus 7.0.0.1
Ibm Websphere Enterprise Service Bus 7.0.0.2
890
VMScore
CVE-2010-3491
The (1) ActiveMatrix Runtime and (2) ActiveMatrix Administrator components in TIBCO ActiveMatrix Service Grid prior to 2.3.1, ActiveMatrix Service Bus prior to 2.3.1, ActiveMatrix BusinessWorks Service Engine prior to 5.8.1, and ActiveMatrix Service Performance Manager prior to 1...
Tibco Activematrix Service Performance Manager
Tibco Activematrix Service Bus
Tibco Activematrix Businessworks Service Engine
Tibco Activematrix Service Grid
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »