Known Vulnerabilities for products from Tripwire

Listed below are 6 of the newest known vulnerabilities associated with the vendor "Tripwire".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2015-6237 json The RPC service in Tripwire (formerly nCircle) IP360 VnE Manager 7.2.2 before 7.2.6 allows remote attackers to bypass authent... Not Provided 2017-12-27 2025-04-20
CVE-2013-5005 json Multiple cross-site scripting (XSS) vulnerabilities in ajaxRequest/methodCall.do in Tripwire Enterprise 8.2 and earlier allow... Not Provided 2014-01-29 2026-04-29
CVE-2008-0578 json Cross-site scripting (XSS) vulnerability in the web management login page in Tripwire Enterprise 7.0 allows remote attackers ... Not Provided 2008-02-05 2026-04-23
CVE-2004-0536 json Format string vulnerability in Tripwire commercial 4.0.1 and earlier, including 2.4, and open source 2.3.1 and earlier, allow... Not Provided 2004-08-06 2025-04-03
CVE-2001-0774 json Tripwire 1.3.1, 2.2.1 and 2.3.0 allows local users to overwrite arbitrary files and possible gain privileges via a symbolic l... Not Provided 2001-10-18 2025-04-03
CVE-1999-0464 json Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames. Not Provided 1999-01-04 2025-04-03

Known software with vulnerabilities from Tripwire

Type Vendor Product Version
ApplicationTripwireSecurecheq1.0.0
ApplicationTripwireTripwire Enterprise8.2.0.5
ApplicationTripwireTripwire Enterprise Agent8.0.0
ApplicationTripwireTripwire Enterprise Console8.0.0.0
ApplicationTripwireTwoval Plug-in1.0.0
ApplicationTripwireVia Agent2.2.0