CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-20131link is external Cisco Secure Firewall Management Center FMC Software and Cisco Security Cloud Control SCC Firewall Management Deserialization of...

Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data Vulnerability

Cisco Secure Firewall Management Center FMC Software and Cisco Security Cloud Control SCC Firewall Management contain a deserialization of untrusted data vulnerability in the web-based management interface that could allow an unauthenticated, remote attacker to execute arbitrary Java code as root...

Oracle Enterprise Manager Cloud Control (January 2025 CPU)

The 13.5.0.0 versions of Enterprise Manager Base Platform installed on the remote host are affected by a vulnerability as referenced in the January 2025 CPU advisory. - An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java before 1.78, BC Java LTS before 2.73.6,...

Hands-On Walkthrough: Microsegmentation For all Users, Workloads and Devices by Elisity

Network segmentation remains a critical security requirement, yet organizations struggle with traditional approaches that demand extensive hardware investments, complex policy management, and disruptive network changes. Healthcare and manufacturing sectors face particular challenges as they...

Oracle Enterprise Manager Cloud Control (October 2024 CPU)

The 13.5.0.0 versions of Enterprise Manager Base Platform installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2024 CPU advisory. - Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Agent Next...

New Threat Actor WIP26 Targeting Telecom Service Providers in the Middle East

Telecommunication service providers in the Middle East are being targeted by a previously undocumented threat actor as part of a suspected intelligence gathering mission. Cybersecurity firms SentinelOne and QGroup are tracking the activity cluster under the former's work-in-progress moniker WIP26...

Oracle Enterprise Manager Cloud Control (Jan 2023 CPU)

The 13.4.0.0 and 13.5.0.0 versions of Enterprise Manager Base Platform installed on the remote host are affected by a vulnerabiliy in the Application Config Console Google Gson component as referenced in the January 2023 CPU advisory. Easily exploitable vulnerability allows unauthenticated attack...

Oracle Enterprise Manager Cloud Control (Jul 2022 CPU)

The 13.4.0.0 and 13.5.0.0 versions of Enterprise Manager Base Platform installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2022 CPU advisory. - Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component:...

Oracle Enterprise Manager Cloud Control (Oct 2021 CPU)

The 13.4.0.x 13.4.0.13 and 13.5.0.x 13.5.0.1 versions of Enterprise Manager Base Platform installed on the remote host are affected by a vulnerability, as referenced in the October 2021 CPU advisory. - Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager...

Oracle Enterprise Manager Cloud Control (Jul 2021 CPU)

The 13.4.0.0 versions of Enterprise Manager Base Platform installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2021 CPU advisory. - Vulnerability in the StorageTek Tape Analytics SW Tool product of Oracle Systems component: Software dom4j. The supported...

Oracle Enterprise Manager Cloud Control (Apr 2021 CPU)

The 13.4.0.0 version of Enterprise Manager Base Platform installed on the remote host is affected by multiple vulnerabilities as referenced in the April 2021 CPU advisory. - Vulnerability in the Enterprise Manager for Virtualization product of Oracle Enterprise Manager component: Administration...

Command Execution Vulnerability in Panalog Log Audit System of Beijing Paiwang Software Co.

Panabit log auditing system supports clustering and open Raw Data interface to Hadoop big data platform. And embedded in the cloud control platform, convenient for users to unify and centralized monitoring and so on. Panabit Log Audit System has a command execution vulnerability that can be...

Oracle Enterprise Manager Cloud Control (Apr 2020 CPU)

The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the April 2020 CPU advisory. - Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that...

The vulnerability of the Cloud Control Manager component – a software platform of the Enterprise Manager Base Platform – allows a malicious individual to gain access to modify, add, or delete data, gain unauthorized access to protected information, or cause service failures.

The vulnerability of the Cloud Control Manager component – a software platform of the Enterprise Manager Base Platform – is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, gain unauthorized acces...

Oracle Enterprise Manager Cloud Control (Jan 2020 CPU)

The version of Oracle Enterprise Manager Cloud Control installed on the remote host is affected by multiple vulnerabilities in Enterprise Manager Base Platform component: - Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager, Supported versions that are...

CVE-2020-2626

Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Cloud Control Manager - OMS. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTT...

CVE-2020-2626

CVE-2020-2626 affects Oracle Enterprise Manager Cloud Control Manager – OMS within the Enterprise Manager Base Platform. Affected versions are 12.1.0.5, 13.2.0.0 and 13.3.0.0. The vulnerability enables a high-privileged attacker with network access over HTTP to compromise the Base Platform, poten...

CVE-2020-2626

Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Cloud Control Manager - OMS. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTT...

CVE-2020-2626

Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Cloud Control Manager - OMS. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTT...

Oracle Enterprise Manager Cloud Control (Oct 2019 CPU)

The version of Oracle Enterprise Manager Cloud Control installed on the remote host is affected by multiple vulnerabilities in Enterprise Manager Base Platform component: - A remote security vulnerability exists in the Enterprise Manager Base Platform product of Oracle Enterprise Manager. An...