Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adm vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2014-9768
IBM Tivoli NetView Access Services (NVAS) allows remote authenticated users to gain privileges by entering the ADM command and modifying a "page ID" field to the EMSPG2 transaction code. NOTE: the vendor's perspective is that configuration and use of available secu...
Ibm Tivoli Netview Access Services -
NA
CVE-2009-3275
Blocks/Common/Src/Configuration/Manageability/Adm/AdmContentBuilder.cs in Microsoft patterns & practices Enterprise Library (aka EntLib) allows context-dependent malicious users to cause a denial of service (CPU consumption) via an input string composed of many \ (backslash) ...
Microsoft Enterprise Library 3.1
Microsoft Enterprise Library 4.1
Microsoft Enterprise Library 4.0
7.5
CVSSv3
CVE-2023-2749
Download Center fails to properly validate the file path submitted by a user, An attacker can exploit this vulnerability to gain unauthorized access to sensitive files or directories without appropriate permission restrictions. Download Center on ADM 4.0 and above will be affecte...
Asustor Download Center
7.8
CVSSv3
CVE-2020-8903
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "adm" group, users with this ...
Google Guest-oslogin
Opensuse Leap 15.1
Opensuse Leap 15.2
8.8
CVSSv3
CVE-2018-11345
An unrestricted file upload vulnerability in upload.cgi in ASUSTOR AS6202T ADM 3.1.0.RFQ3 allows malicious users to upload supplied data via the POST parameter filename. This can be used to place attacker controlled code on the file system that can then be executed. Further, the ...
Asustor As6202t Firmware
7.1
CVSSv3
CVE-2019-14039
Out of bound read in adm call back function due to incorrect boundary check for payload in command response in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053...
Qualcomm Apq8053 Firmware -
Qualcomm Apq8098 Firmware -
Qualcomm Mdm9206 Firmware -
Qualcomm Mdm9207c Firmware -
Qualcomm Mdm9607 Firmware -
Qualcomm Mdm9640 Firmware -
Qualcomm Mdm9650 Firmware -
Qualcomm Msm8905 Firmware -
Qualcomm Msm8909w Firmware -
Qualcomm Msm8917 Firmware -
Qualcomm Msm8953 Firmware -
Qualcomm Qcs605 Firmware -
Qualcomm Sda660 Firmware -
Qualcomm Sda845 Firmware -
Qualcomm Sdm429 Firmware -
Qualcomm Sdm429w Firmware -
Qualcomm Sdm439 Firmware -
Qualcomm Sdm670 Firmware -
Qualcomm Sdm710 Firmware -
Qualcomm Sdm845 Firmware -
Qualcomm Sdx20 Firmware -
Qualcomm Sdx24 Firmware -
8.8
CVSSv3
CVE-2022-42923
Forma LMS on its 3.1.0 version and previous versions is vulnerable to a SQL injection vulnerability. The exploitation of this vulnerability could allow an authenticated attacker (with the role of student) to perform a SQL injection on the 'id' parameter in the 'app...
Formalms Formalms
6.1
CVSSv3
CVE-2021-4293
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as problematic has been found in gnuboard youngcart5 up to 5.4.5.1. Affected is an unknown function of the file adm/menu_list_update.php. The manipulation of the argument me_link leads to cross site scripting. It is possi...
Sir Youngcart5
8.1
CVSSv3
CVE-2022-27511
Corruption of the system by a remote, unauthenticated user. The impact of this can include the reset of the administrator password at the next device reboot, allowing an attacker with ssh access to connect with the default administrator credentials after the device has rebooted.
Citrix Application Delivery Management
1 Github repository
NA
CVE-2004-0450
Format string vulnerability in the printlog function in log2mail prior to 0.2.5.2 allows local users or remote malicious users to execute arbitrary code via format string specifiers in a logfile monitored by log2mail.
Log2mail Log2mail 0.2.5.0
Log2mail Log2mail 0.2.5.1
Log2mail Log2mail 0.2.2.2
Log2mail Log2mail 0.2.5.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »