Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
logic flaw vulnerabilities and exploits
(subscribe to this query)
670
VMScore
CVE-2020-8597
eap.c in pppd in ppp 2.4.2 up to and including 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.
Point-to-point Protocol Project Point-to-point Protocol
Wago Pfc Firmware
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
6 Github repositories
739
VMScore
CVE-2021-34865
This vulnerability allows network-adjacent malicious users to bypass authentication on affected installations of multiple NETGEAR routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the mini_httpd service, which listens on TCP po...
Netgear Ac2100 Firmware
Netgear Ac2400 Firmware
Netgear Ac2600 Firmware
Netgear D7000v1 Firmware
Netgear R6220 Firmware
Netgear R6230 Firmware
Netgear R6260 Firmware
Netgear R6330 Firmware
Netgear R6350 Firmware
Netgear R6700v2 Firmware
Netgear R6800 Firmware
Netgear R6850 Firmware
Netgear R6900v2 Firmware
Netgear R7200 Firmware
Netgear R7350 Firmware
Netgear R7400 Firmware
Netgear R7450 Firmware
632
VMScore
CVE-2010-3107
A certain ActiveX control in ienipp.ocx in the browser plugin in Novell iPrint Client prior to 5.42 does not properly restrict the set of files to be deleted, which allows remote malicious users to cause a denial of service (recursive file deletion) via unspecified vectors relate...
Novell Iprint 4.32
Novell Iprint 4.34
Novell Iprint 5.12
Novell Iprint
Novell Iprint 4.36
Novell Iprint 4.38
Novell Iprint 4.26
Novell Iprint 4.27
Novell Iprint 5.04
Novell Iprint 5.30
Novell Iprint 4.28
Novell Iprint 4.30
Novell Iprint 5.32
Novell Iprint 5.20b
801
VMScore
CVE-2019-1862
A vulnerability in the web-based user interface (Web UI) of Cisco IOS XE Software could allow an authenticated, remote malicious user to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability occurs because the affected softwa...
Cisco Ios Xe 16.3.7
1 Article
NA
CVE-2021-3995
A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows an unprivileged local malicious user to unmount FUSE filesystems that belong to certain other users who have a UID that is...
Kernel Util-linux
Fedoraproject Fedora 35
1 Github repository
NA
CVE-2021-3996
A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows a local user on a vulnerable system to unmount other users' filesystems that are either world-writable themselves (li...
Kernel Util-linux
Fedoraproject Fedora 35
1 Github repository
294
VMScore
CVE-2020-17409
This vulnerability allows network-adjacent malicious users to disclose sensitive information on affected installations of NETGEAR R6120, R6080, R6260, R6220, R6020, JNR3210, and WNR2020 routers with firmware 1.0.66. Authentication is not required to exploit this vulnerability. Th...
Netgear R6020 Firmware
Netgear R6080 Firmware
Netgear R6120 Firmware
Netgear R6220 Firmware
Netgear R6230 Firmware
Netgear R6260 Firmware
Netgear R6330 Firmware
Netgear R6350 Firmware
Netgear R6850 Firmware
Netgear Jnr3210 Firmware -
Netgear Wnr2020 Firmware -
187
VMScore
CVE-2020-12394
A logic flaw in our location bar implementation could have allowed a local malicious user to spoof the current location by selecting a different origin and removing focus from the input element. This vulnerability affects Firefox < 76.
Mozilla Firefox
NA
CVE-2022-36087
OAuthLib is an implementation of the OAuth request-signing logic for Python 3.6+. In OAuthLib versions 3.1.1 until 3.2.1, an attacker providing malicious redirect uri can cause denial of service. An attacker can also leverage usage of `uri_validate` functions depending where it i...
Oauthlib Project Oauthlib
Fedoraproject Fedora 37
NA
CVE-2024-2004
When a protocol selection parameter option disables all protocols without adding any then the default set of protocols would remain in the allowed set due to an error in the logic for removing protocols. The below command would perform a request to curl.se with a plaintext protoc...
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »