Operation And Maintenance Security Management System

9 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-1414 MEDIUM POC This Month

Operation And Maintenance Security Management System versions up to 3.0.12. contains a vulnerability that allows attackers to command injection (CVSS 6.3).

Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVSS 3.1
6.3
EPSS
0.1%
CVE-2026-1413 MEDIUM This Month

Operation And Maintenance Security Management System versions up to 3.0.12. contains a security vulnerability (CVSS 6.3).

Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVSS 3.1
6.3
EPSS
0.1%
CVE-2026-1412 HIGH POC This Week

Operation And Maintenance Security Management System versions up to 3.0.12. contains a security vulnerability (CVSS 7.3).

Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVSS 3.1
7.3
EPSS
0.1%
CVE-2026-1325 MEDIUM POC This Month

Operation And Maintenance Security Management System versions up to 3.0.12. is affected by weak password recovery mechanism for forgotten password (CVSS 5.3).

Information Disclosure Operation And Maintenance Security Management System
NVD GitHub VulDB
CVSS 3.1
5.3
EPSS
0.1%
CVE-2026-1324 HIGH POC This Week

Operation And Maintenance Security Management System versions up to 3.0.12. is affected by command injection (CVSS 8.8).

Ssh Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
0.3%
CVE-2025-15503 HIGH POC This Week

Operation And Maintenance Security Management System versions up to 3.0.8. is affected by improper access control (CVSS 7.3).

File Upload Authentication Bypass Operation And Maintenance Security Management System
NVD GitHub VulDB
CVSS 3.1
7.3
EPSS
5.5%
CVE-2025-15502 HIGH POC This Week

Operation And Maintenance Security Management System versions up to 3.0.8. is affected by command injection (CVSS 7.3).

Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVSS 3.1
7.3
EPSS
0.4%
CVE-2025-15501 CRITICAL POC Act Now

Sangfor O&M Management System (through 3.0.8) has a second command injection in /isomp-protocol/protocol/getCmd, also via sessionPath. Public exploit with higher EPSS (1.2%) than the first vulnerability.

Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.2%
CVE-2025-12916 MEDIUM POC This Month

A vulnerability was determined in Sangfor Operation and Maintenance Security Management System 3.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Operation And Maintenance Security Management System
NVD VulDB
CVSS 4.0
5.3
EPSS
0.5%
CVE-2026-1414
EPSS 0% CVSS 6.3
MEDIUM POC This Month

Operation And Maintenance Security Management System versions up to 3.0.12. contains a vulnerability that allows attackers to command injection (CVSS 6.3).

Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVE-2026-1413
EPSS 0% CVSS 6.3
MEDIUM This Month

Operation And Maintenance Security Management System versions up to 3.0.12. contains a security vulnerability (CVSS 6.3).

Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVE-2026-1412
EPSS 0% CVSS 7.3
HIGH POC This Week

Operation And Maintenance Security Management System versions up to 3.0.12. contains a security vulnerability (CVSS 7.3).

Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVE-2026-1325
EPSS 0% CVSS 5.3
MEDIUM POC This Month

Operation And Maintenance Security Management System versions up to 3.0.12. is affected by weak password recovery mechanism for forgotten password (CVSS 5.3).

Information Disclosure Operation And Maintenance Security Management System
NVD GitHub VulDB
CVE-2026-1324
EPSS 0% CVSS 8.8
HIGH POC This Week

Operation And Maintenance Security Management System versions up to 3.0.12. is affected by command injection (CVSS 8.8).

Ssh Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVE-2025-15503
EPSS 5% CVSS 7.3
HIGH POC This Week

Operation And Maintenance Security Management System versions up to 3.0.8. is affected by improper access control (CVSS 7.3).

File Upload Authentication Bypass Operation And Maintenance Security Management System
NVD GitHub VulDB
CVE-2025-15502
EPSS 0% CVSS 7.3
HIGH POC This Week

Operation And Maintenance Security Management System versions up to 3.0.8. is affected by command injection (CVSS 7.3).

Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVE-2025-15501
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Sangfor O&M Management System (through 3.0.8) has a second command injection in /isomp-protocol/protocol/getCmd, also via sessionPath. Public exploit with higher EPSS (1.2%) than the first vulnerability.

Command Injection Operation And Maintenance Security Management System
NVD GitHub VulDB
CVE-2025-12916
EPSS 0% CVSS 5.3
MEDIUM POC This Month

A vulnerability was determined in Sangfor Operation and Maintenance Security Management System 3.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Operation And Maintenance Security Management System
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy