Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
james fitts vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-9349
An issue exists in Advantech SUISAccess Server Version 3.0 and prior. An attacker could traverse the file system and extract files that can result in information disclosure.
Advantech Susiaccess
2 EDB exploits
1 Github repository
NA
CVE-2013-6810
The server in Brocade Network Advisor prior to 12.1.0, as used in EMC Connectrix Manager Converged Network Edition (CMCNE), HP B-series SAN Network Advisor, and possibly other products, allows remote malicious users to execute arbitrary code by using a servlet to upload an execut...
Emc Connectrix Manager 11.2.1
Emc Connectrix Manager 12.0.1
Emc Connectrix Manager 12.0.3
2 EDB exploits
7
CVSSv3
CVE-2016-9351
An issue exists in Advantech SUISAccess Server Version 3.0 and prior. The directory traversal/file upload error allows an malicious user to upload and unpack a zip file.
Advantech Susiaccess
1 EDB exploit
5.3
CVSSv3
CVE-2017-6020
Leao Consultoria e Desenvolvimento de Sistemas (LCDS) LTDA ME LAquis SCADA software versions prior to version 4.1.0.3237 do not neutralize external input to ensure that users are not calling for absolute path sequences outside of their privilege level.
Lcds Laquis Scada
1 EDB exploit
8
CVSSv3
CVE-2016-8377
An issue exists in Fatek Automation PLC WinProladder Version 3.11 Build 14701. A stack-based buffer overflow vulnerability exists when the software application connects to a malicious server, resulting in a stack buffer overflow. This causes an exploitable Structured Exception Ha...
Fatek Plc Winproladder Firmware 3.11
1 EDB exploit
NA
CVE-2014-5210
The av-centerd SOAP service in AlienVault OSSIM prior to 4.7.0 allows remote malicious users to execute arbitrary commands via a crafted (1) remote_task or (2) get_license request, a different vulnerability than CVE-2014-3804 and CVE-2014-3805.
Alienvault Open Source Security Information Management
Alienvault Open Source Security Information Management 4.5
Alienvault Open Source Security Information Management 4.3
Alienvault Open Source Security Information Management 4.2.2
Alienvault Open Source Security Information Management 4.0
Alienvault Open Source Security Information Management 3.1.12
Alienvault Open Source Security Information Management 2.1.2
Alienvault Open Source Security Information Management 1.0.6
Alienvault Open Source Security Information Management 4.1.3
Alienvault Open Source Security Information Management 4.1.2
Alienvault Open Source Security Information Management 4.1
Alienvault Open Source Security Information Management 4.0.4
Alienvault Open Source Security Information Management 4.0.3
Alienvault Open Source Security Information Management 1.0.4
Alienvault Open Source Security Information Management 4.4
Alienvault Open Source Security Information Management 4.3.3
Alienvault Open Source Security Information Management 4.3.2
Alienvault Open Source Security Information Management 4.3.1
Alienvault Open Source Security Information Management 3.1
Alienvault Open Source Security Information Management 2.1.5-3
Alienvault Open Source Security Information Management 2.1.5-2
Alienvault Open Source Security Information Management 2.1.5-1
1 EDB exploit
NA
CVE-2014-4153
The av-centerd SOAP service in AlienVault OSSIM prior to 4.8.0 allows remote malicious users to read arbitrary files via a crafted get_file request.
Alienvault Open Source Security Information Management 4.6
Alienvault Open Source Security Information Management 4.5
Alienvault Open Source Security Information Management 4.4
Alienvault Open Source Security Information Management 4.3.3
Alienvault Open Source Security Information Management 4.0
Alienvault Open Source Security Information Management
Alienvault Open Source Security Information Management 4.6.1
1 EDB exploit
NA
CVE-2014-0780
Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 7.1 before SP2 Patch 4 allows remote malicious users to read administrative passwords in APP files, and consequently execute arbitrary code, via unspecified web requests.
Indusoft Web Studio
Indusoft Web Studio 7.1
1 EDB exploit
NA
CVE-2014-0787
Stack-based buffer overflow in WellinTech KingSCADA prior to 3.1.2.13 allows remote malicious users to execute arbitrary code via a crafted packet.
Wellintech Kingscada 3.1
Wellintech Kingscada
1 EDB exploit
7.5
CVSSv3
CVE-2017-5177
A Stack Buffer Overflow issue exists in VIPA Controls WinPLC7 5.0.45.5921 and prior. A stack-based buffer overflow vulnerability has been identified, where an attacker with a specially crafted packet could overflow the fixed length buffer. This could allow remote code execution.
Vipa Controls Winplc7 Firmware
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »
Vulmon