Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

west shepherd vulnerabilities and exploits

(subscribe to this query)
9.8
CVSSv3
CVE-2017-14702
ERS Data System 1.8.1.0 allows remote malicious users to execute arbitrary code, related to "com.branaghgroup.ecers.update.UpdateRequest" object deserialization.
Branaghgroup Ers Data System 1.8.1.0
5.5
CVSSv3
CVE-2020-1472
An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC). An attacker who successfully exploited the vulnerability could run a specially crafted...
Microsoft Windows Server 2008 R2Microsoft Windows Server 2012 R2Microsoft Windows Server 2016 -Microsoft Windows Server 2012 -Microsoft Windows Server 2019 -Microsoft Windows Server 2016 1903Microsoft Windows Server 2016 1909Microsoft Windows Server 2016 2004Fedoraproject Fedora 31Fedoraproject Fedora 32Fedoraproject Fedora 33Opensuse Leap 15.1Opensuse Leap 15.2Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 20.04Synology Directory ServerSamba SambaDebian Debian Linux 9.0Oracle Zfs Storage Appliance Kit 8.8
8.1
CVSSv3
CVE-2022-28213
When a user access SOAP Web services in SAP BusinessObjects Business Intelligence Platform - version 420, 430, it does not sufficiently validate the XML document accepted from an untrusted source, which might result in arbitrary files retrieval from the server and in successful e...
Sap Businessobjects Business Intelligence Platform 420Sap Businessobjects Business Intelligence Platform 430
9.8
CVSSv3
CVE-2020-0230
There is a possible out of bounds write due to an incorrect bounds check. Product: AndroidVersions: Android SoCAndroid ID: A-156337262
Google Android -
7.8
CVSSv3
CVE-2020-1147
A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'.
Microsoft .net Core 2.1Microsoft .net Core 3.1Microsoft .net Framework 2.0Microsoft .net Framework 3.0Microsoft .net Framework 3.5Microsoft .net Framework 4.6.2Microsoft .net Framework 4.7Microsoft .net Framework 4.7.1Microsoft .net Framework 4.7.2Microsoft .net Framework 4.6.1Microsoft .net Framework 4.6Microsoft .net Framework 4.8Microsoft .net Framework 3.5.1Microsoft .net Framework 4.5.2Microsoft Sharepoint Server 2010Microsoft Sharepoint Enterprise Server 2016Microsoft Sharepoint Enterprise Server 2013Microsoft Sharepoint Server 2019Microsoft Visual Studio 2019Microsoft Visual Studio 2017
8.8
CVSSv3
CVE-2020-0618
A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests, aka 'Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability'.
Microsoft Sql Server 2012Microsoft Sql Server 2014Microsoft Sql Server 2016
9.8
CVSSv3
CVE-2019-0230
Apache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution.
Apache StrutsOracle Financial Services Market Risk Measurement And Management 8.0.6Oracle Communications Policy Management 12.5.0Oracle Financial Services Data Integration Hub 8.0.6Oracle Financial Services Data Integration Hub 8.0.3Oracle Mysql Enterprise Monitor
7.8
CVSSv3
CVE-2021-3156
Sudo prior to 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.
Sudo Project Sudo 1.9.5Sudo Project SudoFedoraproject Fedora 32Fedoraproject Fedora 33Debian Debian Linux 9.0Debian Debian Linux 10.0Netapp Solidfire -Netapp Hci Management Node -Netapp Oncommand Unified Manager Core Package -Mcafee Web Gateway 8.2.17Mcafee Web Gateway 9.2.8Mcafee Web Gateway 10.0.4Synology Diskstation Manager 6.2Synology Diskstation Manager Unified Controller 3.0Synology Skynas Firmware -Synology Vs960hd Firmware -Beyondtrust Privilege Management For MacBeyondtrust Privilege Management For Unix\\/linuxOracle Micros Compact Workstation 3 Firmware 310Oracle Micros Es400 FirmwareOracle Micros Kitchen Display System Firmware 210Oracle Micros Workstation 5a Firmware 5a
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook