Armis Vulnerability Intelligence Database

By combining AI with human insight, Armis Vulnerability Intelligence Database offers extended coverage for vulnerabilities that matter to you, your industry, and provides you with clear remediation instructions.

CVE Name	Severity Score	Published Date	CISA KEV

Take These Insights to the Next Level

Armis now offers direct API access to Armis Vulnerability Intelligence Database through the AWS Marketplace, transforming it from a powerful research tool into an integrated component of your proactive security posture.

Seamless Integration: Directly feed Armis's contextual data into your existing stack.
Automated Workflows: Automate vulnerability lookups in real-time.
Custom Solutions: Use the raw data to build custom dashboards, reports, alerts.

GET THE API

Perspectives, Insights, and News

This Year Vulnerability Management Moves from the Basement to the C-suite

The evolution of cybersecurity practices are reshaping how organizations tackle vulnerabilities.

READ BLOG→

Closing the Loop

Making security everyone's business with prioritization and collaboration.

READ CASE STUDY→

The State of Cyberwarfare

The state of Cyberwarfare

LEARN MORE→

July 2016 CVEs

716 vulnerabilities published in July 2016.

CVE-2016-2861Low 3.7
IBM WebSphere eXtreme Scale vulnerability affecting 7.1.0 before 7.1.0.3, 7.1.1 before 7.1.1.1, 8.5 before 8.5.0.3, and 8.6 before 8.6.0.8 where data in transit is not properly encrypted, allowing rem…
CVE-2016-1440Medium 5.3
Cisco Web Security Appliance (WSA) proxy process vulnerability (CVE-2016-1440) allows remote attackers to cause a denial of service by establishing an FTP session and then improperly terminating the F…
CVE-2016-1416Critical 9.8
Cisco Prime Collaboration Provisioning 10.6 SP2 (10.6.0.10602) mishandles LDAP authentication, allowing remote attackers to obtain administrator privileges via a crafted login attempt (Bug ID CSCuv375…
CVE-2016-1408High 8.8
Cisco Prime Infrastructure versions 1.2–3.1 and EPNM versions 1.2 and 2.0 are vulnerable to remote authenticated command execution or file upload via a crafted HTTP request (CVE-2016-1408, Bug ID CSCu…
CVE-2016-1289Critical 9.8
Authentication bypass vulnerability in Cisco Prime Infrastructure (versions 1.2–3.0) and EPNM (version 1.2) API that allows remote attackers to bypass authentication, execute arbitrary code, or access…
CVE-2016-0400Medium 6.1
CRLF injection vulnerability in IBM WebSphere eXtreme Scale allowing remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting via a crafted URL.
CVE-2016-0399Medium 5.4
Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management versions 7.1 through 7.1.1.13, 7.5 before 7.5.0.9 IFIX007, and 7.6 before 7.6.0.5 FP005 that allows remote authenticated users t…
CVE-2016-0398Medium 4.3
CVE-2016-0398: IBM Cognos Analytics 11.0 before 11.0.2 allows remote attackers to conduct content-spoofing via a crafted URL.
CVE-2016-0391Critical 9.8
CVE-2016-0391: The IBM Watson Developer Cloud services on Bluemix platforms do not properly generate random numbers for service-instance credentials, which makes it easier for remote attackers to defe…
CVE-2016-0387Medium 5.4
Cross-site scripting (XSS) vulnerability in IBM TRIRIGA Application Platform that allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL; affects 3.3 before 3.3.2.6…
CVE-2016-0386High 8.0
Cross-site request forgery (CSRF) vulnerability in IBM TRIRIGA Application Platform that allows remote authenticated users to hijack administrator authentication to execute delete-employee requests (a…
CVE-2016-0375High 8.8
JMS Client in IBM MessageSight 1.1.x through 1.1.0.1, 1.2.x through 1.2.0.3, and 2.0.x through 2.0.0.0 allows remote authenticated users to obtain administrator privileges for executing arbitrary comm…
CVE-2016-0374High 8.8
Privilege escalation vulnerability (CVE-2016-0374) in IBM TRIRIGA Application Platform builder tools allows remote authenticated users to gain privileged access for application modification via unspec…
CVE-2016-0365Medium 5.9
Authentication bypass vulnerability in IBM UrbanCode Deploy affecting multiple 6.x releases when agent-relay Codestation artifact caching is enabled; remote attackers could bypass authentication and a…
CVE-2016-0364Medium 4.3
IBM UrbanCode Deploy 6.0.x prior to 6.0.1.13, 6.1.x prior to 6.1.3.3, and 6.2.x prior to 6.2.1.1 contain a weakness where secure properties are not properly obfuscated in logs, allowing remote authent…
CVE-2016-0362High 7.7
SSRF vulnerability in IBM TRIRIGA Application Platform allowing remote authenticated users to cause server-side requests to arbitrary internal or external hosts via a crafted proxy request to a web se…