Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
k vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-15522
Bouncy Castle BC Java prior to 1.66, BC C# .NET prior to 1.8.7, BC-FJA prior to 1.0.1.2, 1.0.2.1, and BC-FNA prior to 1.0.1.1 have a timing issue within the EC math library that can expose information about the private key when an attacker is able to observe timing information fo...
Bouncycastle Bc-csharp
Bouncycastle Bouncy Castle Fips .net Api
Bouncycastle Legion-of-the-bouncy-castle-fips-java-api
Bouncycastle The Bouncy Castle Crypto Package For Java
2 Github repositories
4.3
CVSSv2
CVE-2021-3629
A flaw was found in Undertow. A potential security issue in flow control handling by the browser over http/2 may potentially cause overhead or a denial of service in the server. The highest threat from this vulnerability is availability. This flaw affects Undertow versions before...
Redhat Single Sign-on -
Redhat Jboss Enterprise Application Platform -
Redhat Wildfly Core
Redhat Integration -
Redhat Undertow
Redhat Jboss Enterprise Application Platform 7.4
Redhat Jboss Enterprise Application Platform 7.3
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
4.3
CVSSv2
CVE-2018-17051
K-Net Cisco Configuration Manager through 2014-11-19 has XSS via devices.php.
Knet Cisco Configuration Manager
4.3
CVSSv2
CVE-2018-11557
YIBAN Easy class education platform 2.0 has XSS via the articlelist.php k parameter.
Yiban Easy Class Education Platform 2.0
NA
CVE-2023-35878
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Vadym K. Extra User Details plugin <= 0.5 versions.
Extra User Details Project Extra User Details
NA
CVE-2024-27405
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs It is observed sometimes when tethering is used over NCM with Windows 11 as host, at some instances, the gadget_giveback has one byte appended at...
NA
CVE-2022-31260
In Montala ResourceSpace up to and including 9.8 before r19636, csv_export_results_metadata.php allows malicious users to export collection metadata via a non-NULL k value.
Montala Resourcespace
Montala Resourcespace 9.8
6.5
CVSSv2
CVE-2020-6757
contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows authenticated malicious users to remotely execute code via the name parameter.
Rasilient Pixelstor 5000 Firmware 4.0.1580-20150629
NA
CVE-2022-37617
Prototype pollution vulnerability in function resolveShims in resolve-shims.js in thlorenz browserify-shim 3.8.15 via the k variable in resolve-shims.js.
Browserify-shim Project Browserify-shim 3.8.15
6.8
CVSSv2
CVE-2020-36448
An issue exists in the cache crate through 2020-11-24 for Rust. There are unconditional implementations of Send and Sync for Cache<K>.
Cache Project Cache
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »