Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
znc vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-2448
znc.cpp in ZNC prior to 0.092 allows remote authenticated users to cause a denial of service (crash) by requesting traffic statistics when there is an active unauthenticated connection, which triggers a NULL pointer dereference, as demonstrated using (1) a traffic link in the web...
Znc Znc 0.074
Znc Znc 0.044
Znc Znc 0.072
Znc Znc 0.062
Znc Znc 0.045
Znc Znc 0.052
Znc Znc 0.058
Znc Znc 0.080
Znc Znc 0.043
Znc Znc 0.056
Znc Znc 0.078
Znc Znc 0.050
Znc Znc
Znc Znc 0.034
Znc Znc 0.076
Znc Znc 0.070
Znc Znc 0.064
Znc Znc 0.068
Znc Znc 0.054
Znc Znc 0.060
Znc Znc 0.041
Znc Znc 0.047
NA
CVE-2009-2658
Directory traversal vulnerability in ZNC prior to 0.072 allows remote malicious users to overwrite arbitrary files via a crafted DCC SEND request.
Znc Znc 0.044
Znc Znc 0.062
Znc Znc 0.045
Znc Znc 0.052
Znc Znc 0.058
Znc Znc 0.056
Znc Znc 0.070
Znc Znc 0.064
Znc Znc 0.068
Znc Znc 0.054
Znc Znc 0.060
Znc Znc 0.047
Znc Znc 0.066
NA
CVE-2013-7049
Stack-based buffer overflow in fish.cpp in the Fish plugin for ZNC, as used in ZNC for Windows (znc-msvc) 0.206 and previous versions, allows remote malicious users to cause a denial of service (crash) via a long string in a DH1080_INIT message.
Znc Znc-msvc 0.076
Znc Znc-msvc 0.094
Znc Znc-msvc 0.078
Znc Znc-msvc 0.090
Znc Znc-msvc 0.097
Znc Znc-msvc
Znc Znc-msvc 0.202
Znc Znc-msvc 0.089
Znc Znc-msvc 0.079
Znc Znc-msvc 0.077
Znc Znc-msvc 0.080
Znc Znc-msvc 0.095
Znc Znc-msvc 0.098
Znc Znc-msvc 0.093
NA
CVE-2009-0759
Multiple CRLF injection vulnerabilities in webadmin in ZNC prior to 0.066 allow remote authenticated users to modify the znc.conf configuration file and gain privileges via CRLF sequences in the quit message and other vectors.
Znc Znc 0.058
Znc Znc 0.056
Znc Znc
9.8
CVSSv3
CVE-2020-29577
The official znc docker images prior to 1.7.1-slim contain a blank password for a root user. Systems using the znc docker container deployed by affected versions of the Docker image may allow an remote malicious user to achieve root access with a blank password.
Znc Znc Docker Image 1.6
Znc Znc Docker Image 1.6-slim
Znc Znc Docker Image 1.6.4
Znc Znc Docker Image 1.6.4-slim
Znc Znc Docker Image 1.6.5
Znc Znc Docker Image 1.6.5-slim
Znc Znc Docker Image 1.6.6
Znc Znc Docker Image 1.6.6-slim
Znc Znc Docker Image 1.7.0
Znc Znc Docker Image 1.7.0-slim
Znc Znc Docker Image 1.7.1-slim
NA
CVE-2012-0033
The CBounceDCCMod::OnPrivCTCP function in bouncedcc.cpp in the bouncedcc module in ZNC 0.200 and 0.202 allows remote malicious users to cause a denial of service (crash) via a crafted DCC RESUME request.
Znc Znc-msvc 0.200
Znc Znc-msvc 0.202
NA
CVE-2014-9403
The CWebAdminMod::ChanPage function in modules/webadmin.cpp in ZNC prior to 1.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by adding a channel with the same name as an existing channel but without the leading # character, r...
Znc Znc
7.5
CVSSv3
CVE-2010-2488
NULL pointer dereference vulnerability in ZNC prior to 0.092 caused by traffic stats when there are unauthenticated connections.
Znc Znc
8.8
CVSSv3
CVE-2019-12816
Modules.cpp in ZNC prior to 1.7.4-rc1 allows remote authenticated non-admin users to escalate privileges and execute arbitrary code by loading a module with a crafted name.
Znc Znc
NA
CVE-2010-2812
Client.cpp in ZNC 0.092 allows remote malicious users to cause a denial of service (exception and daemon crash) via a PING command that lacks an argument.
Znc Znc 0.092
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »