Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.8 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2013-2802
The universal protocol implementation in Sixnet UDR prior to 2.0 and RTU firmware prior to 4.8 allows remote malicious users to execute arbitrary code; read, modify, or create files; or obtain file metadata via function opcodes.
Sixnet Rtu Firmware
Sixnet Udr
10
CVSSv2
CVE-2005-0708
The sendfile system call in FreeBSD 4.8 up to and including 4.11 and 5 up to and including 5.4 can transfer portions of kernel memory if a file is truncated while it is being sent, which could allow remote malicious users to obtain sensitive information.
Freebsd Freebsd 4.3
Freebsd Freebsd 4.1.1
Freebsd Freebsd 4.6
Freebsd Freebsd 5.3
Freebsd Freebsd 5.1
Freebsd Freebsd 4.4
Freebsd Freebsd 4.8
Freebsd Freebsd 4.7
Freebsd Freebsd 5.2.1
Freebsd Freebsd 5.0
Freebsd Freebsd 4.5
Freebsd Freebsd 4.10
Freebsd Freebsd 4.2
Freebsd Freebsd 4.1
Dragonflybsd Dragonflybsd 1.0
Freebsd Freebsd 4.9
Freebsd Freebsd 5.2
Freebsd Freebsd 5.4
Freebsd Freebsd 4.0
Dragonflybsd Dragonflybsd 1.1
Freebsd Freebsd 4.6.2
Freebsd Freebsd 4.11
10
CVSSv2
CVE-2004-1304
Stack-based buffer overflow in the ELF header parsing code in file prior to 4.12 allows malicious users to execute arbitrary code via a crafted ELF file.
File File 4.7
File File 4.5
File File 4.4
File File 4.1
File File 4.10
File File 4.2
File File 4.9
File File 4.6
File File 4.3
File File 4.8
File File 4.0
File File 4.11
Trustix Secure Linux 2.0
Trustix Secure Linux 2.1
Trustix Secure Linux 2.2
Gentoo Linux
1 EDB exploit
9.3
CVSSv2
CVE-2020-1472
An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC). An attacker who successfully exploited the vulnerability could run a specially crafted...
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2019 -
Microsoft Windows Server 2004 -
Microsoft Windows Server 20h2 -
Microsoft Windows Server 1903
Microsoft Windows Server 1909
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Opensuse Leap 15.1
Opensuse Leap 15.2
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Synology Directory Server
Samba Samba
Debian Debian Linux 9.0
Oracle Zfs Storage Appliance Kit 8.8
1 Metasploit module
160 Github repositories
18 Articles
9.3
CVSSv2
CVE-2009-2817
Buffer overflow in Apple iTunes prior to 9.0.1 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted .pls file.
Apple Itunes 7.6.0
Apple Itunes 1.1.1
Apple Itunes 7.0.0
Apple Itunes 6.0.5
Apple Itunes 4.7
Apple Itunes 7.6
Apple Itunes 4.9.0
Apple Itunes 4.8.0
Apple Itunes 7.4.2
Apple Itunes 7.1.1
Apple Itunes 3.0.1
Apple Itunes 8.0.0
Apple Itunes 7.3.2
Apple Itunes 2.0.2
Apple Itunes 4.7.0
Apple Itunes 8.0.2
Apple Itunes 5.0.0
Apple Itunes 4.9
Apple Itunes 6.0.3
Apple Itunes 4.7.1
Apple Itunes 7.1.0
Apple Itunes 8.0
2 EDB exploits
9.3
CVSSv2
CVE-2009-1837
Race condition in the NPObjWrapper_NewResolve function in modules/plugin/base/src/nsJSNPRuntime.cpp in xul.dll in Mozilla Firefox 3 prior to 3.0.11 might allow remote malicious users to execute arbitrary code via a page transition during Java applet loading, related to a use-afte...
Mozilla Firefox
Debian Debian Linux 5.0
Fedoraproject Fedora 10
Fedoraproject Fedora 9
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux 4.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux 5.0
Redhat Enterprise Linux Desktop 4.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Server 4.0
Redhat Enterprise Linux Workstation 4.0
Redhat Enterprise Linux Server Aus 5.3
Redhat Enterprise Linux Eus 5.3
Redhat Enterprise Linux Eus 4.8
9
CVSSv2
CVE-2022-0435
A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly esc...
Linux Linux Kernel 5.17
Linux Linux Kernel
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux For Real Time 8
Redhat Enterprise Linux Server Tus 8.4
Redhat Enterprise Linux Eus 8.4
Redhat Enterprise Linux For Real Time For Nfv Tus 8.4
Redhat Enterprise Linux For Real Time For Nfv Tus 8.2
Redhat Enterprise Linux For Real Time Tus 8.4
Redhat Enterprise Linux For Real Time Tus 8.2
Redhat Enterprise Linux Server Aus 8.4
Redhat Enterprise Linux For Real Time For Nfv 8
Redhat Enterprise Linux Server Update Services For Sap Solutions 8.2
Redhat Enterprise Linux Server Update Services For Sap Solutions 8.4
Redhat Enterprise Linux For Power Little Endian Eus 8.2
Redhat Enterprise Linux For Ibm Z Systems Eus 8.2
Redhat Enterprise Linux For Power Little Endian 8.0
Redhat Enterprise Linux For Ibm Z Systems Eus 8.4
Redhat Enterprise Linux For Ibm Z Systems 8.0
1 Github repository
7.8
CVSSv2
CVE-2017-7618
crypto/ahash.c in the Linux kernel up to and including 4.10.9 allows malicious users to cause a denial of service (API operation calling its own callback, and infinite recursion) by triggering EBUSY on a full queue.
Linux Linux Kernel
7.5
CVSSv2
CVE-2021-43267
An issue exists in net/tipc/crypto.c in the Linux kernel prior to 5.14.16. The Transparent Inter-Process Communication (TIPC) functionality allows remote malicious users to exploit insufficient validation of user-supplied sizes for the MSG_CRYPTO message type.
Linux Linux Kernel
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
2 Github repositories
2 Articles
7.5
CVSSv2
CVE-2019-19594
reset/modules/fotoliaFoto/multi_upload.php in the RESET.PRO Adobe Stock API Integration for PrestaShop 1.6 and 1.7 allows remote malicious users to execute arbitrary code by uploading a .php file.
Adobe Stock Api Integration 4.8
Prestashop Prestashop 1.6
Prestashop Prestashop 1.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »