Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2021-23922
An issue exists in Devolutions Remote Desktop Manager prior to 2020.2.12. There is a cross-site scripting (XSS) vulnerability in webviews.
Devolutions Remote Desktop Manager
9.8
CVSSv3
CVE-2023-27132
TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. NOTE: CVE-2023-31069 is only about the TSplus Remote Access product, not the TSplus Remote Work product.
Tsplus Tsplus Remote Work
9.8
CVSSv3
CVE-2023-27133
TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILES(X86)%\TSplus-RemoteWork\Clients\www folder. This may enable privilege escalation if a different local user modifies a file. NOTE: CVE-2023-31067 and CVE-2023-31068 are only abo...
Tsplus Tsplus Remote Work
NA
CVE-2014-5727
The uTorrent Remote (aka com.utorrent.web) application 1.0.20110929 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Utorrent Utorrent Remote 1.0.20110929
5.3
CVSSv3
CVE-2023-32346
Teltonika’s Remote Management System versions before 4.10.0 contain a function that allows users to claim their devices. This function returns information based on whether the serial number of a device has already been claimed, the MAC address of a device has already been ...
Teltonika Remote Management System
9.8
CVSSv3
CVE-2023-32347
Teltonika’s Remote Management System versions before 4.10.0 use device serial numbers and MAC addresses to identify devices from the user perspective for device claiming and from the device perspective for authentication. If an attacker obtained the serial number and MAC a...
Teltonika Remote Management System
5.8
CVSSv3
CVE-2023-32348
Teltonika’s Remote Management System versions before 4.10.0 contain a virtual private network (VPN) hub feature for cross-device communication that uses OpenVPN. It connects new devices in a manner that allows the new device to communicate with all Teltonika devices connec...
Teltonika Remote Management System
10
CVSSv3
CVE-2023-45894
The Remote Application Server in Parallels RAS prior to 19.2.23975 does not segment virtualized applications from the server, which allows a remote malicious user to achieve remote code execution via standard kiosk breakout techniques.
Parallels Remote Application Server
7.8
CVSSv3
CVE-2018-11079
Dell EMC Secure Remote Services, versions before 3.32.00.08, contains a Plaintext Password Storage vulnerability. Database credentials are stored in plaintext in a configuration file. An authenticated malicious user with access to the configuration file may obtain the exposed pas...
Emc Secure Remote Services
5.9
CVSSv3
CVE-2016-2927
IBM BigFix Remote Control prior to 9.1.3 does not properly restrict the set of available encryption algorithms, which makes it easier for remote malicious users to defeat cryptographic protection mechanisms by sniffing the network and performing calculations on encrypted data.
Ibm Bigfix Remote Control
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »