CVE-2016-2199

Multiple cross-site request forgery CSRF vulnerabilities in the Organizations and Remediation management page in Enterprise Manager in McAfee Vulnerability Manager MVM before 7.5.10 allow remote attackers to hijack the authentication of administrators for requests that have unspecified impact via...

CVE-2025-47353

Memory corruption while processing request sent from GVM...

CVE-2025-47353

Memory corruption while processing request sent from GVM...

EUVD-2016-3283

Malware in sbrugna...

EUVD-2014-4750

Malware in sbrugna...

EUVD-2014-1548

Malware in sbrugna...

EUVD-2015-2102

Malware in sbrugna...

EUVD-2015-8843

Malware in sbrugna...

EUVD-2014-1549

Malware in sbrugna...

EUVD-2015-7515

Malware in sbrugna...

CVE-2015-7612

Multiple cross-site request forgery CSRF vulnerabilities in the Organizations page in Enterprise Manager in McAfee Vulnerability Manager MVM 7.5.9 and earlier allow remote attackers to hijack the authentication of administrators for requests that have unspecified impact via unknown vectors...

SUSE CVE-2016-2199

Multiple cross-site request forgery CSRF vulnerabilities in the Organizations and Remediation management page in Enterprise Manager in McAfee Vulnerability Manager MVM before 7.5.10 allow remote attackers to hijack the authentication of administrators for requests that have unspecified impact via...

CVE-2022-41495

ClipperCMS 1.3.3 was discovered to contain a Server-Side Request Forgery SSRF via the rssurlnews parameter at /manager/index.php...

Security Bulletin: IBM QRadar SIEM is affected by a GNU C Library (glibc) vulnerability (CVE-2014-5119)

Summary A security vulnerability have been discovered in GNU C Library glibc component bundled with IBM QRadar SIEM. Vulnerability Details CVE-ID: CVE-2014-5119 DESCRIPTION: The GNU C Library glibc is vulnerable to a heap-based buffer overflow, caused by an off-by-one error in the gconvtranslitfi...

Security Bulletin: Vulnerability in SSLv3 affects IBM QRadar SIEM. (CVE-2014-3566)

Summary SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption POODLE attack. SSLv3 is enabled in IBM QRadar SIEM. Vulnerability Details CVE-ID: CVE-2014-3566 DESCRIPTION: Product could allow a remote attacker to obtain sensitive information...

Security Bulletin: Spring Framework as used by IBM QRadar SIEM is vulnerable to improper input validation (CVE-2020-5421)

Summary Spring Framework as used by IBM QRadar SIEM is vulnerable to improper input validation Vulnerability Details CVEID: CVE-2020-5421 DESCRIPTION: VMware Tanzu Spring Framework could allow a remote attacker to bypass security restrictions, caused by improper input validation. By using a...

Security Bulletin: IBM QRadar SIEM has released 7.3.1 Patch 4, and 7.2.8 Patch 13 in response to the vulnerabilities known as Spectre and Meltdown.

Summary IBM has released the following 7.3.1 Patch 4, and 7.2.8 Patch 13 for IBM QRadar SIEM in response to CVE-2017-5753, CVE-2017-5715 and CVE-2017-5754 Vulnerability Details CVEID: CVE-2017-5753 CVEID: CVE-2017-5715 CVEID: CVE-2017-5754 Affected Products and Versions IBM QRadar SIEM 7.3.0 –...

Security Bulletin: IBM QRadar Vulnerability Manager is vulnerable to a Cross-Site Request Forgery. (CVE-2015-1997)

Summary Cross-Site Request Forgery found in QRadar Vulnerability Manager Vulnerability Details CVE-ID: CVE-2015-1997 Description: IBM QRadar Vulnerability Manager is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading an authenticated user...

McAfee Vulnerability Manager Unsalted Password Vulnerability

McAfee Vulnerability Manager is prone to unsalted password vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2015-8989

Unsalted password vulnerability in the Enterprise Manager web portal component in Intel Security McAfee Vulnerability Manager MVM 7.5.8 and earlier allows attackers to more easily decrypt user passwords via brute force attacks against the database...