Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-0142
In rw_i93_sm_format of rw_i93.c, there is a possible information disclosure due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: An...
Google Android 10.0
2.1
CVSSv2
CVE-2020-0143
In nfa_dm_ndef_find_next_handler of nfa_dm_ndef.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of heap data via compromised device firmware with System execution privileges needed. User interaction is not n...
Google Android 10.0
2.1
CVSSv2
CVE-2020-0144
In btm_proc_sp_req_evt of btm_sec.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Pro...
Google Android 10.0
4.6
CVSSv2
CVE-2020-0150
In rw_t3t_message_set_block_list of rw_t3t.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidV...
Google Android 10.0
2.1
CVSSv2
CVE-2020-0152
In avb_vbmeta_image_verify of avb_vbmeta_image.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...
Google Android 10.0
4.6
CVSSv2
CVE-2020-0153
In phNxpNciHal_write_ext of phNxpNciHal_ext.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...
Google Android 10.0
3.5
CVSSv2
CVE-2021-27679
Cross-site scripting (XSS) vulnerability in Navigation in Batflat CMS 1.3.6 allows remote malicious users to inject arbitrary web script or HTML via the field name.
Batflat Batflat 1.3.6
10
CVSSv2
CVE-2021-27691
Command Injection in Tenda G0 routers with firmware versions v15.11.0.6(9039)_CN and v15.11.0.5(5876)_CN , and Tenda G1 and G3 routers with firmware versions v15.11.0.17(9502)_CN or v15.11.0.16(9024)_CN allows remote malicious users to execute arbitrary OS commands via a crafted ...
Tendacn G0 Firmware 15.11.0.5\\(5876\\) Cn
Tendacn G0 Firmware 15.11.0.6\\(9039\\) Cn
Tendacn G1 Firmware 15.11.0.16\\(9024\\) Cn
Tendacn G1 Firmware 15.11.0.17\\(9502\\) Cn
Tendacn G3 Firmware 15.11.0.16\\(9024\\) Cn
Tendacn G3 Firmware 15.11.0.17\\(9502\\) Cn
NA
CVE-2021-27693
Server-side Request Forgery (SSRF) vulnerability in PublicCMS prior to 4.0.202011.b via /publiccms/admin/ueditor when the action is catchimage.
Publiccms Publiccms
4.3
CVSSv2
CVE-2021-27695
Multiple stored cross-site scripting (XSS) vulnerabilities in openMAINT 2.1-3.3-b allow remote malicious users to inject arbitrary web script or HTML via any "Add" sections, such as Add Card Building & Floor, or others in the Name and Code Parameters.
Openmaint Openmaint 2.1-3.3-b
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »