Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
update-manager vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2021-22278
A certificate validation vulnerability in PCM600 Update Manager allows malicious user to get unwanted software packages to be installed on computer which has PCM600 installed.
Abb Update Manager 2.1.0.4
Abb Update Manager 2.2.0.1
Abb Update Manager 2.2.0.2
Abb Update Manager 2.2.0.23
Abb Update Manager 2.3.0.60
Abb Update Manager 2.4.20041.1
Abb Update Manager 2.4.20119.2
Abb Update Manager 2.1
Abb Update Manager 2.2
Abb Update Manager
5
CVSSv2
CVE-2011-4404
The default configuration of the HTTP server in Jetty in vSphere Update Manager in VMware vCenter Update Manager 4.0 before Update 4 and 4.1 before Update 2 allows remote malicious users to conduct directory traversal attacks and read arbitrary files via unspecified vectors, a re...
Vmware Vcenter Update Manager 4.1
Vmware Vcenter Update Manager 4.0
1 EDB exploit
2.1
CVSSv2
CVE-2012-0948
DistUpgrade/DistUpgradeMain.py in Update Manager, as used by Ubuntu 12.04 LTS, 11.10, and 11.04, uses weak permissions for (1) apt-clone_system_state.tar.gz and (2) system_state.tar.gz, which allows local users to obtain repository credentials.
Canonical Ubuntu Linux 11.04
Gnome Update-manager-core 0.156.14.3
Gnome Update-manager-core 0.152.25.10
Gnome Update-manager-core 0.150.5.2
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 11.10
4.6
CVSSv2
CVE-2019-11987
A security vulnerability in HPE Smart Update Manager (SUM) prior to v8.4 could allow local unauthorized elevation of privilege.
Hpe Smart Update Manager
7.5
CVSSv2
CVE-2019-11988
A Remote Unauthorized Access vulnerability was identified in HPE Smart Update Manager (SUM) earlier than version 8.3.5.
Hpe Smart Update Manager
10
CVSSv2
CVE-2020-7136
A security vulnerability in HPE Smart Update Manager (SUM) prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vulnerability in HPE Smart Update Manager (SUM) before 8.5.6. Please visit the HPE S...
Hpe Smart Update Manager
7.2
CVSSv2
CVE-2021-40376
otris Update Manager 1.2.1.0 allows local users to achieve SYSTEM access via unauthenticated calls to exposed interfaces over a .NET named pipe. A remote attack may be possible as well, by leveraging WsHTTPBinding for HTTP traffic on TCP port 9000.
Otris Update Manager 1.2.1.0
6.4
CVSSv2
CVE-2011-3152
DistUpgrade/DistUpgradeFetcherCore.py in Update Manager prior to 1:0.87.31.1, 1:0.134.x prior to 1:0.134.11.1, 1:0.142.x prior to 1:0.142.23.1, 1:0.150.x prior to 1:0.150.5.1, and 1:0.152.x prior to 1:0.152.25.5 on Ubuntu 8.04 up to and including 11.10 does not verify the GPG sig...
Canonical Update-manager
Canonical Update-manager 1\\
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
1.9
CVSSv2
CVE-2011-3154
DistUpgrade/DistUpgradeViewKDE.py in Update Manager prior to 1:0.87.31.1, 1:0.134.x prior to 1:0.134.11.1, 1:0.142.x prior to 1:0.142.23.1, 1:0.150.x prior to 1:0.150.5.1, and 1:0.152.x prior to 1:0.152.25.5 does not properly create temporary files, which allows local users to ob...
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Update-manager 1\\
Canonical Ubuntu Linux 11.10
Canonical Update-manager
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 11.04
5
CVSSv2
CVE-2012-0949
The Apport hook in Update Manager as used by Ubuntu 12.04 LTS, 11.10, and 11.04 uploads certain system state archive files when reporting bugs to Launchpad, which allows remote malicious users to read repository credentials by viewing a public bug report.
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 12.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
injection
CVE-2024-30983
CVE-2023-4235
CVE-2024-21338
privilege
encryption
CVE-2023-4232
CVE-2024-31497
CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »