Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

csm server project csm server vulnerabilities and exploits

(subscribe to this query)
570
VMScore
CVE-2022-31530
The csm-aut/csm repository up to and including 3.5 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Csm Server Project Csm Server
593
VMScore
CVE-2009-3555
The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and previous versions, OpenSSL prior to 0.9.8l, GnuTLS 2.8.5 and previous versions, Mozilla Network Security Ser...
Openssl Openssl 1.0Apache Http ServerOpenssl OpensslGnu GnutlsMozilla NssDebian Debian Linux 5.0Canonical Ubuntu Linux 10.10Fedoraproject Fedora 11Fedoraproject Fedora 13Debian Debian Linux 4.0Debian Debian Linux 8.0Debian Debian Linux 7.0Canonical Ubuntu Linux 9.04Debian Debian Linux 6.0Fedoraproject Fedora 12Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 8.10Canonical Ubuntu Linux 9.10Fedoraproject Fedora 14F5 Nginx
516
VMScore
CVE-2021-3450
The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve paramet...
Openssl OpensslFreebsd Freebsd 12.2Netapp Santricity Smi-s Provider Firmware -Netapp Storagegrid Firmware -Windriver Linux -Windriver Linux 18.0Windriver Linux 19.0Windriver Linux 17.0Netapp Oncommand Workflow Automation -Netapp Storagegrid -Netapp Ontap Select Deploy Administration Utility -Netapp Cloud Volumes Ontap Mediator -Fedoraproject Fedora 34Tenable Nessus AgentTenable NessusTenable Nessus Network Monitor 5.11.1Tenable Nessus Network Monitor 5.12.0Tenable Nessus Network Monitor 5.12.1Tenable Nessus Network Monitor 5.13.0Tenable Nessus Network Monitor 5.11.0Oracle Jd Edwards World Security A9.4Oracle Weblogic Server 12.2.1.4.0
385
VMScore
CVE-2021-3449
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_ce...
Openssl OpensslDebian Debian Linux 9.0Debian Debian Linux 10.0Freebsd Freebsd 12.2Netapp Santricity Smi-s Provider -Netapp Snapcenter -Netapp Oncommand Workflow Automation -Netapp Storagegrid -Netapp Oncommand Insight -Netapp Ontap Select Deploy Administration Utility -Netapp Active Iq Unified Manager -Netapp Cloud Volumes Ontap Mediator -Netapp E-series Performance Analyzer -Tenable Tenable.scTenable NessusTenable Nessus Network Monitor 5.11.1Tenable Nessus Network Monitor 5.12.0Tenable Nessus Network Monitor 5.12.1Tenable Nessus Network Monitor 5.13.0Tenable Nessus Network Monitor 5.11.0Tenable Log Correlation EngineFedoraproject Fedora 34
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710arbitrary CVE-2024-5272CVE-2024-2961brute forceremoteCVE-2024-32944CVE-2024-36241CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook