Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2018-8030
A Denial of Service vulnerability was found in Apache Qpid Broker-J versions 7.0.0-7.0.4 when AMQP protocols 0-8, 0-9 or 0-91 are used to publish messages with size greater than allowed maximum message size limit (100MB by default). The broker crashes due to the defect. AMQP prot...
Apache Qpid Broker-j
445
VMScore
CVE-2019-20696
Certain NETGEAR devices are affected by disclosure of sensitive information. This affects WAC505 before V5.6.8.3 and WAC510 before V5.6.8.3.
Netgear Wac505 Firmware
Netgear Wac510 Firmware
516
VMScore
CVE-2019-20697
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects GS728TPPv2 prior to 6.0.0.48, GS728TPv2 prior to 6.0.0.48, GS750E prior to 1.0.1.4, GS752TPP prior to 6.0.0.48, and GS752TPv2 prior to 6.0.0.48.
Netgear Gs728tpp Firmware
Netgear Gs728tp Firmware
Netgear Gs750e Firmware
Netgear Gs752tpp Firmware
Netgear Gs752tp Firmware
668
VMScore
CVE-2019-20699
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects GS105Ev2 prior to 1.6.0.4, GS105PE prior to 1.6.0.4, GS408EPP prior to 1.0.0.15, GS808E prior to 1.7.0.7, GS908E prior to 1.7.0.3, GSS108E prior to 1.6.0.4, and GSS108EPP prior ...
Netgear Gs105e Firmware
Netgear Gs105pe Firmware
Netgear Gs408epp Firmware
Netgear Gs808e Firmware
Netgear Gs908e Firmware
Netgear Gss108e Firmware
Netgear Gss108epp Firmware
605
VMScore
CVE-2019-2070
In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117883804
Google Android 10.0
409
VMScore
CVE-2019-20700
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 prior to 1.0.0.44, D6400 prior to 1.0.0.78, D7000v2 prior to 1.0.0.51, D8500 prior to 1.0.3.42, DGN2200v4 prior to 1.0.0.110, DGND2200Bv4 prior to 1.0.0.110, E...
Netgear D6220 Firmware
Netgear D6400 Firmware
Netgear D7000 Firmware
Netgear D8500 Firmware
Netgear Dgn2200 Firmware
Netgear Dgnd2200b Firmware
Netgear Ex3700 Firmware
Netgear Ex3800 Firmware
Netgear Ex6000 Firmware
Netgear Ex6100 Firmware
Netgear Ex6120 Firmware
Netgear Ex6130 Firmware
Netgear Ex6150 Firmware
Netgear Ex6200 Firmware
Netgear Ex7000 Firmware
Netgear R6250 Firmware
Netgear R6300 Firmware
Netgear R6400 Firmware
Netgear R6700 Firmware
Netgear R6900 Firmware
Netgear R7000 Firmware
Netgear R7900 Firmware
463
VMScore
CVE-2019-20708
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 prior to 1.0.0.76, D6000 prior to 1.0.0.76, and XR500 prior to 2.3.2.32.
Netgear Xr500 Firmware
Netgear D3600 Firmware
Netgear D6000 Firmware
383
VMScore
CVE-2018-8031
The Apache TomEE console (tomee-webapp) has a XSS vulnerability which could allow javascript to be executed if the user is given a malicious URL. This web application is typically used to add TomEE features to a Tomcat installation. The TomEE bundles do not ship with this applica...
Apache Tomee
446
VMScore
CVE-2018-8033
In Apache OFBiz 16.11.01 to 16.11.04, the OFBiz HTTP engine (org.apache.ofbiz.service.engine.HttpEngine.java) handles requests for HTTP services via the /webtools/control/httpService endpoint. Both POST and GET requests to the httpService endpoint may contain three parameters: se...
Apache Ofbiz
3 Github repositories
383
VMScore
CVE-2018-8035
This vulnerability relates to the user's browser processing of DUCC webpage input data.The javascript comprising Apache UIMA DUCC (<= 2.2.2) which runs in the user's browser does not sufficiently filter user supplied inputs, which may result in unintended execution o...
Apache Uimaducc
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »