Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-33522
In vulnerable versions of Calico (v3.27.2 and below), Calico Enterprise (v3.19.0-1, v3.18.1, v3.17.3 and below), and Calico Cloud (v19.2.0 and below), an attacker who has local access to the Kubernetes node, can escalate their privileges by exploiting a vulnerability in the Calic...
NA
CVE-2023-50433
marshall in dhcp_packet.c in simple-dhcp-server through ec976d2 allows remote malicious users to cause a denial of service by sending a malicious DHCP packet. The crash is caused by a type confusion bug that results in a large memory allocation; when this memory allocation fails ...
NA
CVE-2023-50434
emdns_resolve_raw in emdns.c in emdns through fbd1eef calls strlen with an input that may not be '\0' terminated, leading to a stack-based buffer over-read. This can be triggered by a remote adversary that can send DNS requests to the emdns server. The impact could vary...
NA
CVE-2023-50432
simple-dhcp-server through ec976d2 allows remote malicious users to cause a denial of service (daemon crash) by sending a DHCP packet without any option fields, which causes free_packet in dhcp_packet.c to dereference a NULL pointer.
NA
CVE-2024-33401
Cross Site Scripting vulnerability in DedeCMS v.5.7.113 allows a remote malicious user to run arbitrary code via the mnum parameter.
NA
CVE-2023-51633
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Centreon. User interaction is required to exploit this vulnerability. The specific flaw exists within the processing of the sysName OID in SNMP. The issue results from the lack of p...
NA
CVE-2024-27518
An issue in SUPERAntiSyware Professional X 10.0.1262 and 10.0.1264 allows unprivileged malicious users to escalate privileges via a restore of a crafted DLL file into the C:\Program Files\SUPERAntiSpyware folder.
1 Github repository
NA
CVE-2024-33350
Directory Traversal vulnerability in TaoCMS v.3.0.2 allows a remote malicious user to execute arbitrary code and obtain sensitive information via the include/model/file.php component.
NA
CVE-2023-31889
An issue discovered in httpd in ASUS RT-AC51U with firmware version up to and including 3.0.0.4.380.8591 allows local malicious users to cause a denial of service via crafted GET request.
NA
CVE-2024-28294
Limbas up to v5.2.14 exists to contain a SQL injection vulnerability via the ftid parameter.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »