Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
connections vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2013-4584
Perdition prior to 2.2 may have weak security when handling outbound connections, caused by an error in the STARTTLS IMAP and POP server. ssl_outgoing_ciphers not being applied to STARTTLS connections
Horms Perdition
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
9.8
CVSSv3
CVE-2021-36152
Apache Gobblin trusts all certificates used for LDAP connections in Gobblin-as-a-Service. This affects versions <= 0.15.0. Users should update to version 0.16.0 which addresses this issue.
Apache Gobblin
7.5
CVSSv3
CVE-2021-34781
A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on the affected device. This vulnerability is du...
Cisco Sourcefire Defense Center 6.4.0
Cisco Sourcefire Defense Center 6.5.0
Cisco Sourcefire Defense Center 6.6.0
Cisco Firepower Threat Defense
Cisco Firepower Management Center Virtual Appliance 6.3.0
Cisco Sourcefire Defense Center 6.3.0
Cisco Sourcefire Defense Center 7.0.0
Cisco Firepower Management Center Virtual Appliance 6.4.0
Cisco Firepower Management Center Virtual Appliance 6.5.0
Cisco Firepower Management Center Virtual Appliance 6.6.0
Cisco Firepower Management Center Virtual Appliance 7.0.0
Cisco Sourcefire Defense Center 6.7.0.3
Cisco Sourcefire Defense Center 6.4.0.13
Cisco Sourcefire Defense Center 6.7.1
Cisco Firepower Management Center Virtual Appliance 6.7.0.3
Cisco Firepower Management Center Virtual Appliance 6.4.0.13
Cisco Firepower Management Center Virtual Appliance 6.7.1
6.5
CVSSv3
CVE-2021-27635
SAP NetWeaver AS for JAVA, versions - 7.20, 7.30, 7.31, 7.40, 7.50, allows an attacker authenticated as an administrator to connect over a network and submit a specially crafted XML file in the application because of missing XML Validation, this vulnerability enables malicious us...
Sap Netweaver Application Server For Java 7.20
Sap Netweaver Application Server For Java 7.30
Sap Netweaver Application Server For Java 7.31
Sap Netweaver Application Server For Java 7.40
Sap Netweaver Application Server For Java 7.50
NA
CVE-2012-6687
FastCGI (aka fcgi and libfcgi) 2.4.0 allows remote malicious users to cause a denial of service (segmentation fault and crash) via a large number of connections.
Fastcgi Fcgi 2.4.0
NA
CVE-2008-2806
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 on Mac OS X allow remote malicious users to bypass the Same Origin Policy and create arbitrary socket connections via a crafted Java applet, related to the Java Embedding Plugin (JEP) and Java LiveConnect.
Mozilla Firefox 2.0.0.14
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0 .1
Mozilla Firefox 2.0 .10
Mozilla Seamonkey 1.1.1
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1
Mozilla Thunderbird 2.0 .12
Mozilla Thunderbird 2.0 8
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0
Mozilla Firefox 2.0 .6
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0 .9
Mozilla Firefox 2.0 8
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 1.1.9
Mozilla Thunderbird 2.0 .6
Mozilla Thunderbird 2.0 .9
Mozilla Firefox 2.0 .7
NA
CVE-2005-2651
gorum/prod.php in Zorum 3.5 allows remote malicious users to execute arbitrary code via shell metacharacters in the argv parameter.
Phpoutsourcing Zorum 3.5
1 EDB exploit
7.4
CVSSv3
CVE-2019-14899
A vulnerability exists in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiting, and determine the correct sequence...
Freebsd Freebsd -
Linux Linux Kernel -
Openbsd Openbsd -
Apple Mac Os X
Apple Tvos
Apple Iphone Os
Apple Ipados
Apple Macos 11.0
4 Github repositories
1 Article
7.5
CVSSv3
CVE-2004-0174
Apache 1.4.x prior to 1.3.30, and 2.0.x prior to 2.0.49, when using multiple listening sockets on certain platforms, allows remote malicious users to cause a denial of service (blocked new connections) via a "short-lived connection on a rarely-accessed listening socket."...
Apache Http Server
NA
CVE-2008-1996
licq prior to 1.3.6 allows remote malicious users to cause a denial of service (file-descriptor exhaustion and application crash) via a large number of connections.
Licq Licq 0.61
Licq Licq 0.71
Licq Licq 0.76
Licq Licq 0.80
Licq Licq 1.0.2
Licq Licq 1.0.3
Licq Licq 1.0.4
Licq Licq 1.3.0 Pre
Licq Licq 1.3.2
Licq Licq 0.75.3a
Licq Licq 0.75 991219
Licq Licq 1.0
Licq Licq 1.0.1
Licq Licq 1.2.7
Licq Licq 1.3.0
Licq Licq 0.75
Licq Licq 0.75.1
Licq Licq 0.81
Licq Licq 0.84a
Licq Licq 1.2
Licq Licq 1.2.3
Licq Licq 1.3.2 Rc
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »