Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
d2d vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-2342
The HP StoreOnce D2D backup system with software prior to 3.0.0 has a default password of badg3r5 for the HPSupport account, which allows remote malicious users to obtain administrative access and delete data via an SSH session.
Hp Storeonce D2d 2.2.13
Hp Storeonce D2d 2.2.00
Hp Storeonce D2d
Hp Storeonce D2d 2.2.16
Hp Storeonce D2d 2.2.14
Hp Storeonce D2d 2.2.10
Hp Storeonce D2d 2.1.01
NA
CVE-2013-2353
Unspecified vulnerability in HP StoreOnce D2D Backup System 1.x prior to 1.2.19 and 2.x prior to 2.3.0 allows remote malicious users to cause a denial of service via unknown vectors.
Hp Storeonce D2d
7.5
CVSSv3
CVE-2020-27858
This vulnerability allows remote malicious users to disclose sensitive information on affected installations of CA Arcserve D2D 16.5. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getNews method. Due to the improper restriction ...
Arcserve D2d 16.5
NA
CVE-2011-3011
BaseServiceImpl.class in CA ARCserve D2D r15 does not properly handle sessions, which allows remote malicious users to obtain credentials, and consequently execute arbitrary commands, via unspecified vectors.
Ca Arcserve D2d R15
1 EDB exploit
NA
CVE-2011-3649
Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D (aka D2D) API is used on Windows in conjunction with the Azure graphics back-end, allow remote malicious users to bypass the Same Origin Policy, and obtain sensitive image data from a different domain, by inserting this d...
Mozilla Firefox 7.0
Mozilla Thunderbird 7.0
NA
CVE-2010-0219
Apache Axis2, as used in dswsbobje.war in SAP BusinessObjects Enterprise XI 3.2, CA ARCserve D2D r15, and other products, has a default password of axis2 for the admin account, which makes it easier for remote malicious users to execute arbitrary code by uploading a crafted web s...
Apache Axis2 1.3
Apache Axis2 1.4
Apache Axis2 1.5.2
Apache Axis2 1.6
Apache Axis2 1.5
Apache Axis2 1.4.1
Apache Axis2 1.5.1
Sap Businessobjects 3.2
3 EDB exploits
1 Github repository
NA
CVE-2011-2986
Mozilla Firefox 4.x through 5, Thunderbird prior to 6, SeaMonkey 2.x prior to 2.3, and possibly other products, when the Direct2D (aka D2D) API is used on Windows, allows remote malicious users to bypass the Same Origin Policy, and obtain sensitive image data from a different dom...
Mozilla Firefox 4.0
Mozilla Firefox 4.0.1
Mozilla Firefox 5.0
Mozilla Thunderbird 2.0.0.1
Mozilla Thunderbird 1.5.0.8
Mozilla Thunderbird 1.5.2
Mozilla Thunderbird 1.5.1
Mozilla Thunderbird 3.0.1
Mozilla Thunderbird 1.0.6
Mozilla Thunderbird 3.0.8
Mozilla Thunderbird 1.0.4
Mozilla Thunderbird 1.5.0.4
Mozilla Thunderbird 3.1.6
Mozilla Thunderbird 1.5.0.11
Mozilla Thunderbird 1.5.0.2
Mozilla Thunderbird 2.0.0.21
Mozilla Thunderbird 3.0.10
Mozilla Thunderbird 2.0.0.23
Mozilla Thunderbird 1.7.1
Mozilla Thunderbird 0.7.1
Mozilla Thunderbird 2.0.0.6
Mozilla Thunderbird 0.2
NA
CVE-2008-4320
Multiple cross-site scripting (XSS) vulnerabilities in OpenNMS prior to 1.5.94 allow remote malicious users to inject arbitrary web script or HTML via (1) the j_username parameter to j_acegi_security_check, (2) the username parameter to notification/list.jsp, and (3) the filter p...
Opennms.org Opennms 1.5.93
Opennms.org Opennms 1.5.92
Opennms.org Opennms 1.3.7
Opennms.org Opennms 1.3.6
Opennms.org Opennms 1.2.4
Opennms.org Opennms 1.2.3
Opennms.org Opennms 1.2.2
Opennms.org Opennms 1.1.1
Opennms.org Opennms
Opennms.org Opennms 1.3.11
Opennms.org Opennms 1.3.10
Opennms.org Opennms 1.3.3
Opennms.org Opennms 1.3.2
Opennms.org Opennms 1.1.5
Opennms.org Opennms 1.1.4
Opennms.org Opennms 1.3.9
Opennms.org Opennms 1.3.8
Opennms.org Opennms 1.3.1
Opennms.org Opennms 1.1.3
Opennms.org Opennms 1.1.2
Opennms.org Opennms 1.5.91
Opennms.org Opennms 1.3.5
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started