Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
silver vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2019-16103
Silver Peak EdgeConnect SD-WAN prior to 8.1.7.x allows privilege escalation (by administrators) from the menu to a root Bash OS shell via the spsshell feature.
Silver-peak Unity Edgeconnect Sd-wan Firmware 8.1.4.9 65644
9
CVSSv2
CVE-2010-4495
Unspecified vulnerability in the ActiveMatrix Runtime component in TIBCO ActiveMatrix Service Grid 3.0.0, 3.0.1, and 3.1.0; ActiveMatrix Service Bus 3.0.0 and 3.0.1; ActiveMatrix BusinessWorks Service Engine 5.9.0; ActiveMatrix BPM 1.0.1 and 1.0.2; Silver BPM Service 1.0.1; and S...
Tibco Activematrix Service Grid 3.0.1
Tibco Activematrix Bpm 1.0.1
Tibco Silver Bpm Service 1.0.1
Tibco Activematrix Service Grid 3.1.0
Tibco Activematrix Service Bus 3.0.0
Tibco Activematrix Service Bus 3.0.1
Tibco Activematrix Businessworks Service Engine 5.9.0
Tibco Activematrix Service Grid 3.0.0
Tibco Activematrix Bpm 1.0.2
Tibco Silver Cap Service 1.0.0
8.5
CVSSv2
CVE-2020-12148
A command injection flaw identified in the nslookup API in Silver Peak Unity ECOSTM (ECOS) appliance software could allow an malicious user to execute arbitrary commands with the privileges of the web server running on the EdgeConnect appliance. An attacker could exploit this vul...
Arubanetworks Edgeconnect Enterprise
8.5
CVSSv2
CVE-2020-12149
The configuration backup/restore function in Silver Peak Unity ECOSTM (ECOS) appliance software was found to directly incorporate the user-controlled config filename in a subsequent shell command, allowing an malicious user to manipulate the resulting command by injecting valid O...
Arubanetworks Edgeconnect Enterprise
7.5
CVSSv2
CVE-2021-23274
The Config UI component of TIBCO Software Inc.'s TIBCO API Exchange Gateway and TIBCO API Exchange Gateway Distribution for TIBCO Silver Fabric contains a vulnerability that theoretically allows an unauthenticated attacker with network access to execute a clickjacking attack...
Tibco Api Exchange Gateway Distribution
Tibco Api Exchange Gateway
7.5
CVSSv2
CVE-2020-12145
Silver Peak Unity Orchestrator versions before 8.9.11+, 8.10.11+, or 9.0.1+ uses HTTP headers to authenticate REST API calls from localhost. This makes it possible to log in to Orchestrator by introducing an HTTP HOST header set to 127.0.0.1 or localhost. Orchestrator instances t...
Silver-peak Unity Orchestrator
7.5
CVSSv2
CVE-2019-16102
Silver Peak EdgeConnect SD-WAN prior to 8.1.7.x has an SNMP service with a public value for rocommunity and trapcommunity.
Silver-peak Unity Edgeconnect Sd-wan Firmware 8.1.4.9 65644
7.5
CVSSv2
CVE-2017-11496
Stack buffer overflow in hasplms in Gemalto ACC (Admin Control Center), all versions ranging from HASP SRM 2.10 to Sentinel LDK 7.50, allows remote malicious users to execute arbitrary code via malformed ASN.1 streams in V2C and similar input files.
Gemalto Sentinel Ldk Rte 2.10
Gemalto Sentinel Ldk Rte 7.50
Gemalto Sentinel Ldk Rte 3.0
Gemalto Sentinel Ldk Rte 7.1
1 Article
7.5
CVSSv2
CVE-2015-4554
Multiple unspecified vulnerabilities in TIBCO Spotfire Client and Spotfire Web Player Client in Spotfire Analyst prior to 5.5.2, 6.0.x prior to 6.0.3, 6.5.x prior to 6.5.3, and 7.0.x prior to 7.0.1; Spotfire Analytics Platform for AWS 6.5 and 7.0.x prior to 7.0.1; Spotfire Automa...
Tibco Spotfire Deployment Kit 6.5.0
Tibco Spotfire Deployment Kit 6.5.1
Tibco Spotfire Deployment Kit
Tibco Spotfire Deployment Kit 6.0.0
Tibco Spotfire Deployment Kit 6.5.2
Tibco Spotfire Deployment Kit 7.0.0
Tibco Spotfire Deployment Kit 6.0.1
Tibco Spotfire Deployment Kit 6.0.2
Tibco Spotfire Professional 6.0.2
Tibco Spotfire Professional 6.5.0
Tibco Spotfire Professional
Tibco Spotfire Professional 7.0.0
Tibco Spotfire Professional 6.5.1
Tibco Spotfire Professional 6.5.2
Tibco Spotfire Professional 6.0.0
Tibco Spotfire Professional 6.0.1
Tibco Spotfire Web Player 6.0.1
Tibco Spotfire Web Player 6.0.2
Tibco Spotfire Web Player 7.0.0
Tibco Spotfire Web Player 6.5.0
Tibco Spotfire Web Player 6.5.1
Tibco Spotfire Web Player 6.5.2
7.5
CVSSv2
CVE-2010-4739
SQL injection vulnerability in the Maian Media Silver (com_maianmedia) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the cat parameter in a music action to index.php.
Aretimes Com Maianmedia
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »