Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote support vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-7375
A flaw in libxml2 allows remote XML entity inclusion with default parser flags (i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD attributes). Depending on the context, this may expose a higher-risk attack surfa...
Xmlsoft Libxml2
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 7.0
Google Android 5.1.1
Google Android 6.0.1
Google Android 5.0.2
Google Android 7.1.1
Google Android 7.1.2
Google Android 4.4.4
Google Android 6.0
Google Android 7.0
Xmlsoft Libxml2 2.9.4
9.8
CVSSv3
CVE-2017-7376
Buffer overflow in libxml2 allows remote malicious users to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects.
Xmlsoft Libxml2
Google Android 7.1.2
Google Android 6.0.1
Google Android 5.0.2
Google Android 5.1.1
Google Android 4.4.4
Google Android 7.1.1
Google Android 7.0
Google Android 6.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
1 Github repository
9.8
CVSSv3
CVE-2017-8818
curl and libcurl prior to 7.57.0 on 32-bit platforms allow malicious users to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact because too little memory is allocated for interfacing to an SSL library.
Haxx Curl 7.56.1
Haxx Libcurl 7.56.0
Haxx Libcurl 7.56.1
Haxx Curl 7.56.0
9.8
CVSSv3
CVE-2017-12229
A vulnerability in the REST API of the web-based user interface (web UI) of Cisco IOS XE 3.1 up to and including 16.5 could allow an unauthenticated, remote malicious user to bypass authentication to the REST API of the web UI of the affected software. The vulnerability is due to...
Cisco Ios Xe 16.1.2
Cisco Ios Xe 3.8.0ex
Cisco Ios Xe 16.1.4
Cisco Ios Xe 16.5.1a
Cisco Ios Xe 3.2.0ja
Cisco Ios Xe 3.1.3as
Cisco Ios Xe 3.4.7asg
Cisco Ios Xe 16.5.1c
Cisco Ios Xe 3.18.3vs
Cisco Ios Xe 16.1.3a
Cisco Ios Xe 16.2.2a
Cisco Ios Xe 16.1.1
Cisco Ios Xe 3.6.5be
Cisco Ios Xe 16.1.3
Cisco Ios Xe 16.3.1a
Cisco Ios Xe 16.2.1
Cisco Ios Xe 3.2.1xo
9.8
CVSSv3
CVE-2017-12236
A vulnerability in the implementation of the Locator/ID Separation Protocol (LISP) in Cisco IOS XE 3.2 up to and including 16.5 could allow an unauthenticated, remote attacker using an x tunnel router to bypass authentication checks performed when registering an Endpoint Identifi...
Cisco Ios Xe 3.9.1e
Cisco Ios Xe 16.5.1c
Cisco Ios Xe 3.2.0ja
9.8
CVSSv3
CVE-2017-12240
The DHCP relay subsystem of Cisco IOS 12.2 up to and including 15.6 and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote malicious user to execute arbitrary code and gain full control of an affected system. The attacker could also cause a...
Cisco Ios 12.1\\(5a\\)
Cisco Ios 15.5\\(3\\)m4
Cisco Ios 12.3\\(2\\)t1
Cisco Ios 12.2\\(20\\)se2
Cisco Ios 15.3\\(3\\)ja1m
Cisco Ios 12.3\\(9d\\)
Cisco Ios 12.3\\(1\\)
Cisco Ios 12.4\\(4\\)xc5
Cisco Ios 12.2\\(58\\)se1
Cisco Ios 12.3\\(7\\)t12
Cisco Ios 12.2\\(2\\)bx1
Cisco Ios 12.4\\(15\\)xl3
Cisco Ios 12.3\\(11\\)ja4
Cisco Ios 12.2\\(2\\)yc1
Cisco Ios 12.2\\(8\\)yw3
Cisco Ios 15.0\\(2\\)ey1
Cisco Ios 12.1\\(10\\)e3
Cisco Ios 12.1\\(10\\)e2
Cisco Ios 12.2\\(46\\)ey
Cisco Ios 12.2\\(2\\)xh1
Cisco Ios 12.4\\(7c\\)
Cisco Ios 12.4\\(3g\\)ja1
9.8
CVSSv3
CVE-2015-7670
Multiple SQL injection vulnerabilities in includes/update.php in the Support Ticket System plugin prior to 1.2.1 for WordPress allow remote malicious users to execute arbitrary SQL commands via the (1) user or (2) id parameter.
Support Ticket System Project Support Ticket System
9.8
CVSSv3
CVE-2017-5689
An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged netwo...
Intel Active Management Technology Firmware 6.1
Intel Active Management Technology Firmware 6.2
Intel Active Management Technology Firmware 10.0
Intel Active Management Technology Firmware 11.0
Intel Active Management Technology Firmware 6.0
Intel Active Management Technology Firmware 9.0
Intel Active Management Technology Firmware 9.1
Intel Active Management Technology Firmware 9.5
Intel Active Management Technology Firmware 7.0
Intel Active Management Technology Firmware 7.1
Intel Active Management Technology Firmware 11.5
Intel Active Management Technology Firmware 11.6
Intel Active Management Technology Firmware 8.0
Intel Active Management Technology Firmware 8.1
1 EDB exploit
2 Metasploit modules
1 Nmap script
35 Github repositories
3 Articles
9.8
CVSSv3
CVE-2016-1560
ExaGrid appliances with firmware prior to 4.8 P26 have a default password of (1) inflection for the root shell account and (2) support for the support account in the web interface, which allows remote malicious users to obtain administrative access via an SSH or HTTP session.
Exagrid Ex3000 Firmware 4.8
Exagrid Ex5000 Firmware 4.8
Exagrid Ex7000 Firmware 4.8
Exagrid Ex10000e Firmware 4.8
Exagrid Ex13000e Firmware 4.8
Exagrid Ex21000e Firmware 4.8
Exagrid Ex32000e Firmware 4.8
Exagrid Ex40000e Firmware 4.8
1 EDB exploit
9.8
CVSSv3
CVE-2016-10128
Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart Protocol support in libgit2 prior to 0.24.6 and 0.25.x prior to 0.25.1 allows remote malicious users to have unspecified impact via a crafted non-flush packet.
Libgit2 Project Libgit2 0.25.0
Libgit2 Project Libgit2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »