Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
solarwinds vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-15574
SolarWinds Serv-U File Server prior to 15.2.1 mishandles the Same-Site cookie attribute, aka Case Number 00331893.
Solarwinds Serv-u
5
CVSSv2
CVE-2020-15576
SolarWinds Serv-U File Server prior to 15.2.1 allows information disclosure via an HTTP response.
Solarwinds Serv-u
5
CVSSv2
CVE-2020-7984
SolarWinds N-central prior to 12.1 SP1 HF5 and 12.2 before SP1 HF2 allows remote malicious users to retrieve cleartext domain admin credentials from the Agent & Probe settings, and obtain other sensitive information. The attacker can use a customer ID to self register and rea...
Solarwinds N-central
1 Github repository
5
CVSSv2
CVE-2019-9017
DWRCC in SolarWinds DameWare Mini Remote Control 10.0 x64 has a Buffer Overflow associated with the size field for the machine name.
Solarwinds Dameware Mini Remote Control 10.0
1 EDB exploit
5
CVSSv2
CVE-2018-16791
In SolarWinds SFTP/SCP Server through 2018-09-10, the configuration file is world readable and writable, and stores user passwords in an insecure manner, allowing an malicious user to determine passwords for potentially privileged accounts. This also grants the attacker an abilit...
Solarwinds Sftp\\/scp Server
5
CVSSv2
CVE-2018-10240
SolarWinds Serv-U MFT prior to 15.1.6 HFv1 assigns authenticated users a low-entropy session token that can be included in requests to the application as a URL parameter in lieu of a session cookie. This session token's value can be brute-forced by an malicious user to obtai...
Solarwinds Serv-u
5
CVSSv2
CVE-2010-2310
SolarWinds TFTP Server 10.4.0.13 allows remote malicious users to cause a denial of service (crash) via a long write request.
Solarwinds Tftp Server 10.4.0.13
1 EDB exploit
5
CVSSv2
CVE-2010-2115
SolarWinds TFTP Server 10.4.0.10 allows remote malicious users to cause a denial of service (no new connections) via a crafted read request.
Solarwinds Tftp Server 10.4.0.10
1 EDB exploit
5
CVSSv2
CVE-2009-3655
Rhino Software Serv-U 7.0.0.1 up to and including 8.2.0.3 allows remote malicious users to cause a denial of service (server crash) via unspecified vectors related to the "SITE SET TRANSFERPROGRESS ON" FTP command.
Solarwinds Serv-u File Server 7.0.0.2
Solarwinds Serv-u File Server 7.0.0.3
Solarwinds Serv-u File Server 7.3.0.2
Solarwinds Serv-u File Server 7.4.0.0
Solarwinds Serv-u File Server 8.1.0.1
Solarwinds Serv-u File Server 8.1.0.3
Solarwinds Serv-u File Server 8.2.0.3
Solarwinds Serv-u File Server 7.1.0.1
Solarwinds Serv-u File Server 7.1.0.2
Solarwinds Serv-u File Server 7.2.0.1
Solarwinds Serv-u File Server 7.3.0.1
Solarwinds Serv-u File Server 8.0.0.2
Solarwinds Serv-u File Server 8.0.0.4
Solarwinds Serv-u File Server 7.0.0.4
Solarwinds Serv-u File Server 7.1.0.0
Solarwinds Serv-u File Server 7.3.0.0
Solarwinds Serv-u File Server 7.4.0.1
Solarwinds Serv-u File Server 8.2.0.0
Solarwinds Serv-u File Server 8.2.0.1
Solarwinds Serv-u File Server 7.0.0.1
Solarwinds Serv-u File Server 7.2.0.0
Solarwinds Serv-u File Server 8.0.0.5
5
CVSSv2
CVE-2009-3115
SolarWinds TFTP Server 9.2.0.111 and previous versions allows remote malicious users to cause a denial of service (service stop) via a crafted Option Acknowledgement (OACK) request. NOTE: some of these details are obtained from third party information.
Solarwinds Tftp Server 8.2
Solarwinds Tftp Server
Solarwinds Tftp Server 8.1
Solarwinds Tftp Server 5.0.55
Solarwinds Tftp Server 5.0.60
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »