Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sam vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2018-6044
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2018-16064. Reason: This candidate is a reservation duplicate of CVE-2018-16064. Notes: All CVE users should reference CVE-2018-16064 instead of this candidate. All references and descriptions in this candidate ha...
6.5
CVSSv3
CVE-2018-6155
Incorrect handling of frames in the VP8 parser in Google Chrome before 68.0.3440.75 allowed a remote malicious user to potentially exploit heap corruption via a crafted video file.
Google Chrome
8.8
CVSSv3
CVE-2018-6161
Insufficient policy enforcement in Blink in Google Chrome before 68.0.3440.75 allowed a remote malicious user to bypass same origin policy via a crafted HTML page.
Google Chrome
6.5
CVSSv3
CVE-2018-6168
Information leak in media engine in Google Chrome before 68.0.3440.75 allowed a remote malicious user to obtain potentially sensitive information from process memory via a crafted HTML page.
Google Chrome
5.7
CVSSv3
CVE-2018-6171
Use after free in Bluetooth in Google Chrome before 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension.
Google Chrome
8.8
CVSSv3
CVE-2018-6154
Insufficient data validation in WebGL in Google Chrome before 68.0.3440.75 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
6.5
CVSSv3
CVE-2018-6150
Incorrect handling of CORS in ServiceWorker in Google Chrome before 66.0.3359.117 allowed a remote malicious user to leak cross-origin data via a crafted HTML page.
Google Chrome
NA
CVE-2024-36886
In the Linux kernel, the following vulnerability has been resolved: tipc: fix UAF in error path Sam Page (sam4k) working with Trend Micro Zero Day Initiative reported a UAF in the tipc_buf_append() error path: BUG: KASAN: slab-use-after-free in kfree_skb_list_reason+0x47e/0x4c0 l...
8.8
CVSSv3
CVE-2018-6156
Incorect derivation of a packet length in WebRTC in Google Chrome before 68.0.3440.75 allowed a remote malicious user to potentially exploit heap corruption via a crafted video file.
Google Chrome
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
NA
CVE-2008-4990
Enomaly Elastic Computing Platform (ECP), formerly Enomalism, prior to 2.1.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/enomalism2.pid temporary file.
Enomaly Elastic Computing Platform
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »