Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2021-30039
Cross Site Scripting (XSS) in Remote Clinic v2.0 via the "Fever" or "Blood Pressure" field on the patients/register-report.php.
Remoteclinic Remote Clinic 2.0
3.5
CVSSv2
CVE-2021-30044
Cross Site Scripting (XSS) in Remote Clinic v2.0 via the First Name or Last Name field on staff/register.php.
Remoteclinic Remote Clinic 2.0
5
CVSSv2
CVE-2021-27570
An issue exists in Emote Remote Mouse up to and including 3.015. Attackers can close any running process by sending the process name in a specially crafted packet. This information is sent in cleartext and is not protected by any authentication logic.
Remotemouse Emote Remote Mouse
5
CVSSv2
CVE-2021-27571
An issue exists in Emote Remote Mouse up to and including 4.0.0.0. Attackers can retrieve recently used and running applications, their icons, and their file paths. This information is sent in cleartext and is not protected by any authentication logic.
Remotemouse Emote Remote Mouse
6.8
CVSSv2
CVE-2021-27574
An issue exists in Emote Remote Mouse up to and including 4.0.0.0. It uses cleartext HTTP to check, and request, updates. Thus, attackers can machine-in-the-middle a victim to download a malicious binary in place of the real update, with no SSL errors or warnings.
Remotemouse Emote Remote Mouse
NA
CVE-2023-30904
A security vulnerability in HPE Insight Remote Support may result in the local disclosure of privileged LDAP information.
Hpe Insight Remote Support
NA
CVE-2023-52252
Unified Remote 3.13.0 allows remote malicious users to execute arbitrary Lua code because of a wildcarded Access-Control-Allow-Origin for the Remote upload endpoint.
Unifiedremote Unified Remote 3.13.0
3.5
CVSSv2
CVE-2021-30042
Cross Site Scripting (XSS) in Remote Clinic v2.0 via the "Clinic Name", "Clinic Address", "Clinic City", or "Clinic Contact" field on clinics/register.php
Remoteclinic Remote Clinic 2.0
4.3
CVSSv2
CVE-2016-2951
IBM BigFix Remote Control prior to 9.1.3 does not properly set the default encryption strength, which makes it easier for remote malicious users to defeat cryptographic protection mechanisms by sniffing the network and performing calculations on encrypted data.
Ibm Bigfix Remote Control
NA
CVE-2023-1202
Permission bypass when importing or synchronizing entries in User vault in Devolutions Remote Desktop Manager 2023.1.9 and prior versions allows users with restricted rights to bypass entry permission via id collision.
Devolutions Remote Desktop Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »