Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bootstrap vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2015-2688
buf_pullup in Tor prior to 0.2.4.26 and 0.2.5.x prior to 0.2.5.11 does not properly handle unexpected arrival times of buffers with invalid layouts, which allows remote malicious users to cause a denial of service (assertion failure and daemon exit) via crafted packets.
Torproject Tor
5
CVSSv2
CVE-2015-2689
Tor prior to 0.2.4.26 and 0.2.5.x prior to 0.2.5.11 does not properly handle pending-connection resolve states during periods of high DNS load, which allows remote malicious users to cause a denial of service (assertion failure and daemon exit) via crafted packets.
Torproject Tor
5.8
CVSSv2
CVE-2020-15229
Singularity (an open source container platform) from version 3.1.1 up to and including 3.6.3 has a vulnerability. Due to insecure handling of path traversal and the lack of path sanitization within `unsquashfs`, it is possible to overwrite/create any files on the host filesystem ...
Sylabs Singularity
Opensuse Leap 15.1
Opensuse Leap 15.2
Opensuse Backports Sle 15.0
7.8
CVSSv2
CVE-2013-5503
The UDP process in Cisco IOS XR 4.3.1 does not free packet memory upon detecting full packet queues, which allows remote malicious users to cause a denial of service (memory consumption) via UDP packets to listening ports, aka Bug ID CSCue69413.
Cisco Ios Xr 4.3.1
6.1
CVSSv2
CVE-2018-0241
A vulnerability in the UDP broadcast forwarding function of Cisco IOS XR Software could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on the affected device. The vulnerability is due to improper handling of UDP broadcast packets th...
Cisco Ios Xr 4.0.4.base
Cisco Ios Xr 4.1.3.base
Cisco Ios Xr 4.2.4.base
Cisco Ios Xr 4.3.4.base
Cisco Ios Xr 5.4.3.ce
Cisco Ios Xr 6.0.4.base
Cisco Ios Xr 6.1.4.base
Cisco Ios Xr 6.2.3.base
Cisco Ios Xr 4.4.3.ce
Cisco Ios Xr 5.1.4.base
Cisco Ios Xr 5.3.4.base
Cisco Ios Xr 5.0.3.ce
Cisco Ios Xr 5.2.5.ce
NA
CVE-2022-41862
In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes.
Postgresql Postgresql
Fedoraproject Fedora 8
Redhat Enterprise Linux 8.0
Redhat Integration Service Registry -
Redhat Integration Camel K -
Redhat Integration Camel Quarkus -
NA
CVE-2024-31391
Insertion of Sensitive Information into Log File vulnerability in the Apache Solr Operator. This issue affects all versions of the Apache Solr Operator from 0.3.0 up to and including 0.8.0. When asked to bootstrap Solr security, the operator will enable basic authentication and c...
NA
CVE-2023-2455
Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certain cases where role-specific policies are used and a given query is planned under one role and then executed under other roles. This scenario can happe...
Postgresql Postgresql
Redhat Enterprise Linux 8.0
Redhat Software Collections -
Redhat Enterprise Linux 9.0
Fedoraproject Fedora 38
7.8
CVSSv2
CVE-2011-1651
Cisco IOS XR 3.9.x and 4.0.x prior to 4.0.3 and 4.1.x prior to 4.1.1, when an SPA interface processor is installed, allows remote malicious users to cause a denial of service (device reload) via a crafted IPv4 packet, aka Bug ID CSCto45095.
Cisco Ios Xr 3.0
Cisco Ios Xr 3.9.1
Cisco Ios Xr 4.0.0
Cisco Ios Xr 4.0.1
Cisco Ios Xr 4.0.2
Cisco Ios Xr 4.1
Cisco Ios Xr 3.9.0
Cisco Ios Xr 3.9.2
7.5
CVSSv2
CVE-2019-19646
pragma.c in SQLite up to and including 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns.
Sqlite Sqlite
Siemens Sinec Infrastructure Network Services
Tenable Tenable.sc
Oracle Mysql Workbench
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »