Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
marked project marked vulnerabilities and exploits
(subscribe to this query)
9.4
CVSSv2
CVE-2006-6535
The dev_queue_xmit function in Linux kernel 2.6 can fail before calling the local_bh_disable function, which could lead to data corruption and "node lockups." NOTE: it is not clear whether this issue is exploitable.
Linux Linux Kernel 2.6.0
7.8
CVSSv2
CVE-2015-8854
The marked package prior to 0.3.4 for Node.js allows malicious users to cause a denial of service (CPU consumption) via unspecified vectors that trigger a "catastrophic backtracking issue for the em inline rule," aka a "regular expression denial of service (ReDoS)....
Marked Project Marked
Fedoraproject Fedora 31
Fedoraproject Fedora 32
7.8
CVSSv2
CVE-2007-6694
The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21 up to and including 2.6.18-53, when running on PowerPC, might allow local users to cause a denial of service (crash) via unknown vectors that cause the of_get_property function to fail, which triggers a NULL poi...
Linux Linux Kernel 2.4.21
Linux Linux Kernel 2.4.24
Linux Linux Kernel 2.4.24 Ow1
Linux Linux Kernel 2.4.27
Linux Linux Kernel 2.4.28
Linux Linux Kernel 2.4.30
Linux Linux Kernel 2.4.33.2
Linux Linux Kernel 2.4.33.3
Linux Linux Kernel 2.4.35
Linux Linux Kernel 2.4.35.2
Linux Linux Kernel 2.4.9 Pre5
Linux Linux Kernel 2.5.0
Linux Linux Kernel 2.5.15
Linux Linux Kernel 2.5.16
Linux Linux Kernel 2.5.23
Linux Linux Kernel 2.5.24
Linux Linux Kernel 2.5.30
Linux Linux Kernel 2.5.31
Linux Linux Kernel 2.5.38
Linux Linux Kernel 2.5.39
Linux Linux Kernel 2.5.46
Linux Linux Kernel 2.5.47
7.8
CVSSv2
CVE-2007-1357
The atalk_sum_skb function in AppleTalk for Linux kernel 2.6.x prior to 2.6.21, and possibly 2.4.x, allows remote malicious users to cause a denial of service (crash) via an AppleTalk frame that is shorter than the specified length, which triggers a BUG_ON call when an attempt is...
Linux Linux Kernel
1 EDB exploit
7.8
CVSSv2
CVE-2006-4623
The Unidirectional Lightweight Encapsulation (ULE) decapsulation component in dvb-core/dvb_net.c in the dvb driver in the Linux kernel 2.6.17.8 allows remote malicious users to cause a denial of service (crash) via an SNDU length of 0 in a ULE packet.
Linux Linux Kernel 2.6.17.8
7.5
CVSSv2
CVE-2021-39275
ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and previous versions.
Apache Http Server
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Cloud Backup -
Netapp Storagegrid -
Netapp Clustered Data Ontap -
Oracle Http Server 12.2.1.3.0
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Http Server 12.2.1.4.0
Oracle Zfs Storage Appliance Kit 8.8
Siemens Sinema Server 14.0
Siemens Sinec Nms
7.5
CVSSv2
CVE-2006-6106
Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net/bluetooth/cmtp/capi.c) in the Linux kernel 2.4.22 up to 2.4.33.4 and 2.6.2 prior to 2.6.18.6, and 2.6.19.x, allow remote malicious users to cause a denial of service (crash) and possibly e...
Linux Linux Kernel 2.4.27
Linux Linux Kernel 2.4.26
Linux Linux Kernel 2.4.33
Linux Linux Kernel 2.4.33.1
Linux Linux Kernel 2.4.23
Linux Linux Kernel 2.4.22
Linux Linux Kernel 2.4.30
Linux Linux Kernel 2.4.33.4
Linux Linux Kernel 2.4.25
Linux Linux Kernel 2.4.24
Linux Linux Kernel 2.4.33.2
Linux Linux Kernel 2.4.33.3
Linux Linux Kernel 2.4.29
Linux Linux Kernel 2.4.28
Linux Linux Kernel 2.4.31
Linux Linux Kernel 2.4.32
Linux Linux Kernel 2.6.2
Linux Linux Kernel 2.6.4
Linux Linux Kernel 2.6.6
Linux Linux Kernel 2.6.3
Linux Linux Kernel 2.6.5
Linux Linux Kernel 2.6.7
7.5
CVSSv2
CVE-2006-3805
The Javascript engine in Mozilla Firefox prior to 1.5.0.5, Thunderbird prior to 1.5.0.5, and SeaMonkey prior to 1.0.3 might allow remote malicious users to execute arbitrary code via vectors involving garbage collection that causes deletion of a temporary object that is still bei...
Mozilla Firefox 1.5
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.4
Mozilla Thunderbird 1.5.0.4
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.2
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.5.0.2
7.5
CVSSv2
CVE-2002-0727
The Host function in Microsoft Office Web Components (OWC) 2000 and 2002 is exposed in components that are marked as safe for scripting, which allows remote malicious users to execute arbitrary commands via the setTimeout method.
Microsoft Project 2002
Microsoft Office Web Components 2000
Microsoft Office Web Components 2002
7.5
CVSSv2
CVE-2000-0419
The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote malicious users to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability.
Microsoft Photodraw 2000 1.0
Microsoft Powerpoint 2000
Microsoft Project 2000
Microsoft Access 2000
Microsoft Word 2000
Microsoft Works 2000
Microsoft Office 2000
Microsoft Outlook 2000
Microsoft Excel 2000
Microsoft Frontpage 2000
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »