Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
validation vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-10184
The verify endpoint in YubiKey Validation Server prior to 2.40 does not check the length of SQL queries, which allows remote malicious users to cause a denial of service, aka SQL injection. NOTE: this issue is potentially relevant to persons outside Yubico who operate a self-host...
Yubico Yubikey One Time Password Validation Server
7.8
CVSSv3
CVE-2023-36658
An issue exists in OPSWAT MetaDefender KIOSK 4.6.1.9996. It has an unquoted service path that can be abused locally.
Opswat Media Validation Agent
Opswat Metadefender Kiosk
8.6
CVSSv3
CVE-2020-10185
The sync endpoint in YubiKey Validation Server prior to 2.40 allows remote malicious users to replay an OTP. NOTE: this issue is potentially relevant to persons outside Yubico who operate a self-hosted OTP validation service with a non-default configuration such as an open sync p...
Yubico Yubikey One Time Password Validation Server
7.2
CVSSv3
CVE-2021-34715
A vulnerability in the image verification function of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote malicious user to execute code with internal user privileges on the underlying operating system. The vulnerab...
Cisco Telepresence Video Communication Server
Cisco Expressway
10
CVSSv3
CVE-2020-11896
The Treck TCP/IP stack prior to 6.0.1.66 allows Remote Code Execution, related to IPv4 tunneling.
Treck Tcp\\/ip
3 Github repositories
1 Article
10
CVSSv3
CVE-2020-11897
The Treck TCP/IP stack prior to 5.0.1.35 has an Out-of-Bounds Write via multiple malformed IPv6 packets.
Treck Tcp\\/ip
1 Github repository
1 Article
9.1
CVSSv3
CVE-2020-11898
The Treck TCP/IP stack prior to 6.0.1.66 improperly handles an IPv4/ICMPv4 Length Parameter Inconsistency, which might allow remote malicious users to trigger an information leak.
Treck Tcp\\/ip
1 Github repository
1 Article
5.4
CVSSv3
CVE-2020-11899
The Treck TCP/IP stack prior to 6.0.1.66 has an IPv6 Out-of-bounds Read.
Treck Tcp\\/ip
1 Github repository
8.2
CVSSv3
CVE-2020-11900
The Treck TCP/IP stack prior to 6.0.1.41 has an IPv4 tunneling Double Free.
Treck Tcp\\/ip
5.3
CVSSv3
CVE-2020-11910
The Treck TCP/IP stack prior to 6.0.1.66 has an ICMPv4 Out-of-bounds Read.
Treck Tcp\\/ip
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »