CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

752 matches found

CNNVD•added 2022/08/15 12:0 a.m.•4 views

Red Hat Ansible 安全漏洞

Red Hat Ansible is a computer system configuration manager from Red Hat, an American company. The product can be used to distribute, manage, and organize computer systems. A security vulnerability exists in Red Hat Ansible that stems from a logic flaw that could lead to elevation of privilege...

6.5CVSS6.5AI score0.00769EPSS

Exploits1References9

OSV•added 2022/08/10 8:16 p.m.•3 views

CVE-2022-37024

Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, and OpUtils before 2022-07-29 through 2022-07-30 125658, 126003, 126105, and 126120 allow authenticated users to make database changes that lead to remote code execution...

8.8CVSS6AI score0.78326EPSS

Exploits0References1

NVD•added 2022/08/10 8:16 p.m.•12 views

CVE-2022-36923

Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, Firewall Analyzer, and OpUtils before 2022-07-27 through 2022-07-28 125657, 126002, 126104, and 126118 allow unauthenticated attackers to obtain a user's API key, and then access external...

7.5CVSS0.0793EPSS

Exploits0References1

Prion•added 2022/08/10 8:16 p.m.•16 views

Design/Logic Flaw

5CVSS7.4AI score0.0793EPSS

Exploits0References1Affected Software7

Prion•added 2022/08/10 8:16 p.m.•14 views

Remote code execution

6.5CVSS8.9AI score0.78326EPSS

Exploits0References1Affected Software7

Vulnrichment•added 2022/08/10 2:17 p.m.•1 views

CVE-2022-36923

7.2AI score0.0793EPSS

Exploits0References1

Cvelist•added 2022/08/10 2:17 p.m.•27 views

CVE-2022-36923

7.7AI score0.0793EPSS

Exploits0References1

CVE•added 2022/08/10 2:17 p.m.•452 views

CVE-2022-36923

CVE-2022-36923 affects Zoho ManageEngine products (OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, Firewall Analyzer, and OpUtils) with an authentication bypass that allows an unauthenticated attacker to retrieve a user’s API key and use external APIs. T...

7.5CVSS7.3AI score0.0793EPSS

In wildExploits0References1Affected Software7

CNNVD•added 2022/08/10 12:0 a.m.•5 views

多款ZOHO ManageEngine产品安全漏洞

ZOHO ManageEngine OpManager and others are products of ZOHO India.ZOHO ManageEngine OpManager is a suite of network, server and virtualization monitoring software.ZOHO ManageEngine OpManager Plus is an IT operations management solution for Windows and Linux systems. ZOHO ManageEngine OpManager Pl...

8.8CVSS8.6AI score0.78326EPSS

Exploits0References2

CVE•added 2022/08/09 3:15 p.m.•71 views

CVE-2022-37024

Summary (CVE-2022-37024) : Multiple Zoho ManageEngine products (OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, OpUtils) prior to 2022-07-29 are affected by a remote code execution flaw. The root cause is insufficient input validation in the getDNSResolv...

8.8CVSS8.9AI score0.78326EPSS

Exploits0References1Affected Software7

CNNVD•added 2022/06/28 12:0 a.m.•2 views

HPE NonStop DSM/SCM 安全漏洞

HPE NonStop DSM/SCM is a tool from HPE USA for managing and configuring software installations on distributed target systems. An information disclosure vulnerability exists in HPE NonStop DSM/SCM version T6031H03^ADP, which can be exploited by an attacker to obtain sensitive information...

7.5CVSS5.7AI score0.0117EPSS

Exploits0References2

BDU FSTEC•added 2022/06/07 12:0 a.m.•7 views

The vulnerability of the Endpoint Configuration Manager agent for the Microsoft Windows operating system, which allows a malicious individual to increase their privileges

The vulnerability of the Endpoint Configuration Manager for the Microsoft Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS7.4AI score0.00818EPSS

Exploits0References3

IBM Security Bulletins•added 2022/05/24 10:18 a.m.•47 views

Security Bulletin: Multiple vulnerabbilities exists in the IBM® SDK, Java™ Technology Edition affect IBM Tivoli Network Configuration Manager

Summary Multiple vulnerabilities exists in IBM® SDK Java™ Technology Edition, Version 8, which is used by IBM Tivoli Network Configuration Manager IP Edition v6.4.2, which was disclosed in the Oracle January 2022 Critical Patch Update. CVE-2022-21365, CVE-2022-21360, CVE-2022-21349, CVE-2022-2134...

5.3CVSS6.3AI score0.08346EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2022/05/24 10:17 a.m.•42 views

Security Bulletin: A vulnerabbility exists in the IBM® SDK, Java™ Technology Edition affect IBM Tivoli Network Configuration Manager (CVE-2021-35603).

Summary A vulnerability exists in IBM® SDK Java™ Technology Edition, Version 8, which is used by IBM Tivoli Network Configuration Manager IP Edition v6.4.2, which was disclosed in the Oracle October 2021 Critical Patch Update Vulnerability Details Refer to the security bulletins listed in the...

4.3CVSS2.5AI score0.04104EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2022/05/24 9:57 a.m.•99 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server, which is a required product for IBM Tivoli Netcool Configuration Manager (CVE-2022-22719, CVE-2022-22720, CVE-2022-22721)

Summary IBM WebSphere Application Server is a required product for IBM Tivoli Netcool Configuration Manager ITNCM version 6.4.2. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the...

9.8CVSS1.1AI score0.69803EPSS

Exploits0Affected Software1

Microsoft KB•added 2022/05/10 12:0 a.m.•132 views

KB5014032: Servicing stack update for Windows 10, version 20H2, 21H1, and 21H2: May 10, 2022

KB5014032: Servicing stack update for Windows 10, version 20H2, 21H1, and 21H2: May 10, 2022 Summary This update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Servicing stack updates SSU makes sure that you have a robust and reliable...

6.9AI score

Exploits0

IBM Security Bulletins•added 2022/05/02 2:30 p.m.•16 views

Security Bulletin: Multiple vulnerabilities in current releases of the IBM® SDK, Java™ Technology Edition affect IBM Tivoli Configuration Manager.

Summary A vulnerability exists in IBM® SDK Java™ Technology Edition, Version 8, which is used by IBM Tivoli Network Configuration Manager IP Edition v6.4.2. These have been addressed. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products a...

3.2AI score

Exploits0Affected Software1