Vulnerabilities > Newrelic

DATE	CVE	VULNERABILITY TITLE	RISK
2019-08-05	CVE-2019-3800	Information Exposure vulnerability in multiple products CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. local low complexity pivotal anynines apigee appdynamics bluemedora contrastsecurity cyberark datadoghq datastax dynatrace forgerock google ibm microsoft newrelic pagerduty riverbed samba signalsciences snyk solace splunk sumologic synopsys tibco wavefront yugabyte CWE-200	2.1
2017-06-13	CVE-2017-9246	SQL Injection vulnerability in Newrelic .Net Agent 6.2.26.0 New Relic .NET Agent before 6.3.123.0 adds SQL injection flaws to safe applications via vectors involving failure to escape quotes during use of the Slow Queries feature, as demonstrated by a mishandled quote in a VALUES clause of an INSERT statement, after bypassing a SET SHOWPLAN_ALL ON protection mechanism. network low complexity newrelic CWE-89	7.5
2013-04-09	CVE-2013-0284	Information Exposure vulnerability in Newrelic Ruby Agent Ruby agent 3.2.0 through 3.5.2 serializes sensitive data when communicating with servers operated by New Relic, which allows remote attackers to obtain sensitive information (database credentials and SQL statements) by sniffing the network and deserializing the data. network low complexity newrelic CWE-200	5.0

Vulnerabilities > Newrelic {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Newrelic"}]}