Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle solaris 8 vulnerabilities and exploits
(subscribe to this query)
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
6.5
CVSSv3
CVE-2020-6950
Directory traversal in Eclipse Mojarra prior to 2.3.14 allows malicious users to read arbitrary files via the loc parameter or con parameter.
Eclipse Mojarra
Oracle Solaris Cluster 4.0
Oracle Banking Platform 2.6.2
Oracle Banking Platform 2.7.1
Oracle Banking Platform 2.9.0
Oracle Communications Network Integrity 7.3.6
Oracle Communications Pricing Design Center 12.0.0.3.0
Oracle Banking Platform 2.12.0
Oracle Banking Enterprise Default Management 2.12.0
Oracle Banking Enterprise Default Management 2.10.0
Oracle Retail Merchandising System 19.0.1
Oracle Hyperion Calculation Manager
Oracle Time And Labor
7.8
CVSSv3
CVE-2021-3156
Sudo prior to 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.
Sudo Project Sudo 1.9.5
Sudo Project Sudo
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Oncommand Unified Manager Core Package -
Mcafee Web Gateway 8.2.17
Mcafee Web Gateway 9.2.8
Mcafee Web Gateway 10.0.4
Synology Diskstation Manager 6.2
Synology Diskstation Manager Unified Controller 3.0
Synology Skynas Firmware -
Synology Vs960hd Firmware -
Beyondtrust Privilege Management For Mac
Beyondtrust Privilege Management For Unix\\/linux
Oracle Micros Compact Workstation 3 Firmware 310
Oracle Micros Es400 Firmware
Oracle Micros Kitchen Display System Firmware 210
Oracle Micros Workstation 5a Firmware 5a
142 Github repositories
1 Article
6.1
CVSSv3
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
Redhat Hibernate Validator
Redhat Hibernate Validator 6.1.0
Redhat Single Sign-on -
Redhat Jboss Enterprise Application Platform -
Redhat Jboss Data Grid -
Redhat Openshift Application Runtimes -
Redhat Fuse 1.0
Redhat Jboss Enterprise Application Platform 7.2
Redhat Jboss Enterprise Application Platform 7.3
Netapp Active Iq Unified Manager -
Netapp Element -
Netapp Snapcenter Plug-in -
Netapp Management Services For Element Software And Netapp Hci -
Oracle Flexcube Investor Servicing 12.3.0
Oracle Flexcube Investor Servicing 12.1.0
Oracle Solaris 11
Oracle Flexcube Private Banking 12.1.0
Oracle Insurance Policy Administration J2ee 10.2.0
Oracle Flexcube Private Banking 12.0.0
Oracle Flexcube Investor Servicing 12.0.4
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Integration Bus 13.0
6.5
CVSSv3
CVE-2019-16168
In SQLite up to and including 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."
Sqlite Sqlite
Netapp Steelstore Cloud Integrated Storage -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Ontap Select Deploy Administration Utility -
Netapp Active Iq Unified Manager
Netapp Santricity Unified Manager -
Netapp E-series Santricity Os Controller
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 12.04
Fedoraproject Fedora 30
Debian Debian Linux 9.0
Tenable Nessus Agent
Oracle Solaris 11
Oracle Outside In Technology 8.5.4
Oracle Mysql
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Oracle Zfs Storage Appliance 8.8
7.3
CVSSv3
CVE-2019-10086
In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an malicious user to access the classloader via the class property available on all Java objects. We, however were not using this by default characteristic of th...
Apache Commons Beanutils
Apache Nifi 1.14.0
Apache Nifi 1.15.0
Debian Debian Linux 8.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Aus 7.7
Redhat Enterprise Linux Server Tus 7.7
Redhat Enterprise Linux Eus 7.7
Redhat Jboss Enterprise Application Platform 7.2.0
Oracle Retail Xstore Point Of Service 15.0
Oracle Flexcube Private Banking 12.1.0
Oracle Banking Platform 2.4.0
Oracle Retail Xstore Point Of Service 7.1
Oracle Flexcube Private Banking 12.0.0
Oracle Service Bus 11.1.1.9.0
Oracle Fusion Middleware 11.1.1.9
9.8
CVSSv3
CVE-2016-5687
The VerticalFilter function in the DDS coder in ImageMagick prior to 6.9.4-3 and 7.x prior to 7.0.1-4 allows remote malicious users to have unspecified impact via a crafted DDS file, which triggers an out-of-bounds read.
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick 7.0.1-3
Imagemagick Imagemagick 7.0.1-2
Imagemagick Imagemagick
Imagemagick Imagemagick 7.0.1-0
Oracle Solaris 11.3
8.1
CVSSv3
CVE-2016-5688
The WPG parser in ImageMagick prior to 6.9.4-4 and 7.x prior to 7.0.1-5, when a memory limit is set, allows remote malicious users to have unspecified impact via vectors related to the SetImageExtent return-value check, which trigger (1) a heap-based buffer overflow in the SetPix...
Oracle Solaris 11.3
Imagemagick Imagemagick 7.0.1-4
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick
Imagemagick Imagemagick 7.0.1-3
Imagemagick Imagemagick 7.0.1-2
Imagemagick Imagemagick 7.0.1-0
9.8
CVSSv3
CVE-2016-5689
The DCM reader in ImageMagick prior to 6.9.4-5 and 7.x prior to 7.0.1-7 allows remote malicious users to have unspecified impact by leveraging lack of NULL pointer checks.
Oracle Solaris 11.3
Imagemagick Imagemagick 7.0.1-4
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick 7.0.1-5
Imagemagick Imagemagick 7.0.1-3
Imagemagick Imagemagick 7.0.1-2
Imagemagick Imagemagick
Imagemagick Imagemagick 7.0.1-0
Imagemagick Imagemagick 7.0.1-6
9.8
CVSSv3
CVE-2016-5690
The ReadDCMImage function in DCM reader in ImageMagick prior to 6.9.4-5 and 7.x prior to 7.0.1-7 allows remote malicious users to have unspecified impact via vectors involving the for statement in computing the pixel scaling table.
Oracle Solaris 11.3
Imagemagick Imagemagick 7.0.1-4
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick 7.0.1-5
Imagemagick Imagemagick 7.0.1-3
Imagemagick Imagemagick 7.0.1-2
Imagemagick Imagemagick
Imagemagick Imagemagick 7.0.1-0
Imagemagick Imagemagick 7.0.1-6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »