CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

869 matches found

Kaspersky•added 2026/03/10 12:0 a.m.•7 views

KLA90923 PE vulnerability in Microsoft System Center

An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2026-20967 Exploitation Related products Microsoft-System-Center-Operations-Manager CVE list CVE-2026-20967 critical Solution...

8.8CVSS5.8AI score0.0106EPSS

Exploits0References3

CNNVD•added 2026/03/10 12:0 a.m.•3 views

Microsoft System Center Operations Manager 输入验证错误漏洞

Microsoft System Center Operations Manager is a large-scale monitoring and management software developed by Microsoft for use in corporate environments. This software was originally known as MOM Microsoft Operations Manager and is primarily used for monitoring IT systems, providing monitoring...

8.8CVSS5.8AI score0.0106EPSS

Exploits0References2

Positive Technologies•added 2026/03/10 12:0 a.m.•5 views

PT-2026-24259

Name of the Vulnerable Software and Affected Versions System Center Operations Manager affected versions not specified Description Improper input validation exists in System Center Operations Manager, potentially allowing an authorized attacker to elevate privileges over a network. Recommendation...

9CVSS5.8AI score0.0106EPSS

Exploits0References5

IBM Security Bulletins•added 2026/02/24 7:13 p.m.•8 views

Security Bulletin: Vulnerabilities in COMPONENT_NAME_HERE affecting MongoDB Enterprised Advanced (CVE-2024-29371)

Summary There is a vulnerability in jose4j-0.9.4.jar used in MongoDB Enterprised Advanced for IBM, involving CVE-2024-29371. The vulnerability has been addressed. Vulnerability Details CVEID:CVE-2024-29371 DESCRIPTION: In jose4j before 0.9.6, an attacker can cause a Denial-of-Service DoS conditio...

7.5CVSS5.4AI score0.00244EPSS

Exploits1Affected Software1

RedhatCVE•added 2026/01/09 11:51 a.m.•12 views

CVE-2009-4189

HP Operations Manager has a default password of OvWbusr1 for the ovwebusr account, which allows remote attackers to execute arbitrary code via a session that uses the manager role to conduct unrestricted file upload attacks against the /manager servlet in the Tomcat servlet container. NOTE: this...

10CVSS8.1AI score0.78791EPSS

Exploits11References1

RedhatCVE•added 2026/01/09 11:22 a.m.•8 views

CVE-2021-22022

The vRealize Operations Manager API 8.x prior to 8.5 contains an arbitrary file read vulnerability. A malicious actor with administrative access to vRealize Operations Manager API can read any arbitrary file on server leading to information disclosure...

4.9CVSS6.7AI score0.01098EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:21 a.m.•7 views

CVE-2021-22026

The vRealize Operations Manager API 8.x prior to 8.5 contains a Server Side Request Forgery in an end point. An unauthenticated malicious actor with network access to the vRealize Operations Manager API can perform a Server Side Request Forgery attack leading to information disclosure...

7.5CVSS6.8AI score0.01092EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:20 a.m.•6 views

CVE-2021-22023

The vRealize Operations Manager API 8.x prior to 8.5 has insecure object reference vulnerability. A malicious actor with administrative access to vRealize Operations Manager API may be able to modify other users information leading to an account takeover...

7.2CVSS6.5AI score0.00967EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 11:19 a.m.•2 views

CVE-2021-22027

7.5CVSS6.7AI score0.01123EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:11 a.m.•14 views

CVE-2022-26484

An issue was discovered in Veritas InfoScale Operations Manager VIOM before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. The web server fails to sanitize admin/cgi-bin/rulemgr.pl/getfile/ input data, allowing a remote authenticated administrator to read arbitrary files on the system via...

6.8CVSS6.5AI score0.02564EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:28 a.m.•5 views

CVE-2019-12114

An issue was discovered in ONAP HOLMES before Dublin. By accessing port 9202 of dep-holmes-engine-mgmt pod, an unauthenticated attacker who already has access to pod-to-pod communication may execute arbitrary code inside that pod. All ONAP Operations Manager OOM setups are affected...

9.8CVSS7.9AI score0.02065EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:28 a.m.•7 views

CVE-2019-12127

In ONAP OOM through Dublin, by accessing an applicable port 30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271, an attacker gains full access to the respective ONAP services without any authentication. All ONAP Operations Manager OOM setups are affected...

9.8CVSS7AI score0.01242EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:27 a.m.•2 views

CVE-2019-12128

In ONAP SO through Dublin, by accessing an applicable port 30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271, an attacker gains full access to the respective ONAP services without any authentication. All ONAP Operations Manager OOM setups are affected...

10CVSS7AI score0.01655EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:27 a.m.•7 views

CVE-2019-12119

An issue was discovered in ONAP SDC through Dublin. By accessing port 7000 of demo-sdc-sdc-wfd-fe pod, an unauthenticated attacker who already has access to pod-to-pod communication may execute arbitrary code inside that pod. All ONAP Operations Manager OOM setups are affected...

9.8CVSS7.9AI score0.02065EPSS

Exploits1References1