Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2022-31230
Dell PowerScale OneFS, versions 8.2.x-9.2.x, contain broken or risky cryptographic algorithm. A remote unprivileged malicious attacker could potentially exploit this vulnerability, leading to full system access.
Dell Powerscale Onefs
10
CVSSv2
CVE-2022-31767
IBM CICS TX Standard and Advanced 11.1 could allow a remote malicious user to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 227980.
Ibm Cics Tx
Ibm Cics Tx 11.1
10
CVSSv2
CVE-2022-32554
Pure Storage FlashArray products running Purity//FA 6.2.0 - 6.2.3, 6.1.0 - 6.1.12, 6.0.0 - 6.0.8, 5.3.0 - 5.3.17, 5.2.x and prior Purity//FA releases, and Pure Storage FlashBlade products running Purity//FB 3.3.0, 3.2.0 - 3.2.4, 3.1.0 - 3.1.12, 3.0.x and prior Purity//FB releases...
Purestorage Purity\\/\\/fa
Purestorage Purity\\/\\/fb
10
CVSSv2
CVE-2022-2068
In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection were found by code review. When the CVE-2022-1292 was fixed it was not dis...
Openssl Openssl
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Siemens Sinec Ins 1.0
Siemens Sinec Ins
Netapp Santricity Smi-s Provider -
Netapp Element Software -
Netapp Ontap Select Deploy Administration Utility -
Netapp Smi-s Provider -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapmanager -
Netapp Ontap Antivirus Connector -
Netapp Bootstrap Os -
Netapp H615c Firmware -
Netapp H610s Firmware -
Netapp H610c Firmware -
Netapp H410c Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
1 Github repository
1 Article
10
CVSSv2
CVE-2022-31311
An issue in adm.cgi of WAVLINK AERIAL X 1200M M79X3.V5030.180719 allows malicious users to execute arbitrary commands via a crafted POST request.
Wavlink Aerial X 1200m Firmware M79x3.v5030.180719
10
CVSSv2
CVE-2022-30308
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-on" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access...
Festo Controller Cecc-x-m1 Firmware
Festo Controller Cecc-x-m1 Firmware 4.0.14
Festo Controller Cecc-x-m1-mv Firmware
Festo Controller Cecc-x-m1-mv Firmware 4.0.14
Festo Controller Cecc-x-m1-mv-s1 Firmware
Festo Controller Cecc-x-m1-mv-s1 Firmware 4.0.14
Festo Controller Cecc-x-m1-ys-l1 Firmware
Festo Controller Cecc-x-m1-ys-l2 Firmware
Festo Controller Cecc-x-m1-y-yjkp Firmware
Festo Servo Press Kit Yjkp Firmware
Festo Servo Press Kit Yjkp- Firmware
10
CVSSv2
CVE-2022-30309
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-off" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper acces...
Festo Controller Cecc-x-m1 Firmware
Festo Controller Cecc-x-m1 Firmware 4.0.14
Festo Controller Cecc-x-m1-mv Firmware
Festo Controller Cecc-x-m1-mv Firmware 4.0.14
Festo Controller Cecc-x-m1-mv-s1 Firmware
Festo Controller Cecc-x-m1-mv-s1 Firmware 4.0.14
Festo Controller Cecc-x-m1-ys-l1 Firmware
Festo Controller Cecc-x-m1-ys-l2 Firmware
Festo Controller Cecc-x-m1-y-yjkp Firmware
Festo Servo Press Kit Yjkp Firmware
Festo Servo Press Kit Yjkp- Firmware
10
CVSSv2
CVE-2022-30310
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-acknerr-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access contr...
Festo Controller Cecc-x-m1 Firmware
Festo Controller Cecc-x-m1 Firmware 4.0.14
Festo Controller Cecc-x-m1-mv Firmware
Festo Controller Cecc-x-m1-mv Firmware 4.0.14
Festo Controller Cecc-x-m1-mv-s1 Firmware
Festo Controller Cecc-x-m1-mv-s1 Firmware 4.0.14
Festo Controller Cecc-x-m1-ys-l1 Firmware
Festo Controller Cecc-x-m1-ys-l2 Firmware
Festo Controller Cecc-x-m1-y-yjkp Firmware
Festo Servo Press Kit Yjkp Firmware
Festo Servo Press Kit Yjkp- Firmware
10
CVSSv2
CVE-2022-30311
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access contr...
Festo Controller Cecc-x-m1 Firmware
Festo Controller Cecc-x-m1 Firmware 4.0.14
Festo Controller Cecc-x-m1-mv Firmware
Festo Controller Cecc-x-m1-mv Firmware 4.0.14
Festo Controller Cecc-x-m1-mv-s1 Firmware
Festo Controller Cecc-x-m1-mv-s1 Firmware 4.0.14
Festo Controller Cecc-x-m1-ys-l1 Firmware
Festo Controller Cecc-x-m1-ys-l2 Firmware
Festo Controller Cecc-x-m1-y-yjkp Firmware
Festo Servo Press Kit Yjkp Firmware
Festo Servo Press Kit Yjkp- Firmware
10
CVSSv2
CVE-2022-23657
A remote authentication bypass vulnerability exists in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.
Arubanetworks Clearpass Policy Manager 6.8.9
Arubanetworks Clearpass Policy Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »