Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
client side vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-36535
Client-side enforcement of server-side security in Zoom clients prior to 5.14.10 may allow an authenticated user to enable information disclosure via network access.
Zoom Zoom
Zoom Virtual Desktop Infrastructure
Zoom Rooms
1000
VMScore
CVE-2006-0230
Symantec Scan Engine 5.0.0.24, and possibly other versions prior to 5.1.0.7, uses a client-side check to verify a password, which allows remote malicious users to gain administrator privileges via a modified client that sends certain XML requests.
Symantec Antivirus Scan Engine 5.0.0.24
1 EDB exploit
NA
CVE-2023-48789
A client-side enforcement of server-side security in Fortinet FortiPortal version 6.0.0 up to and including 6.0.14 allows malicious user to improper access control via crafted HTTP requests.
NA
CVE-2024-32685
Client-Side Enforcement of Server-Side Security vulnerability in Wpmet Wp Ultimate Review allows Functionality Bypass.This issue affects Wp Ultimate Review: from n/a up to and including 2.2.5.
668
VMScore
CVE-2019-17570
An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult method of Apache XML-RPC (aka ws-xmlrpc) library. A malicious XML-RPC server could target a XML-RPC client causing it to execute arbitrary code. Apache XML-RPC is no longer maint...
Apache Xml-rpc 3.1.3
Apache Xml-rpc 3.1.2
Apache Xml-rpc 3.1
Apache Xml-rpc 3.1.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Redhat Software Collections 1.0
4 Github repositories
641
VMScore
CVE-2020-17024
Windows Client Side Rendering Print Provider Elevation of Privilege Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows 10 1607
Microsoft Windows 8.1 -
Microsoft Windows Server 2016 -
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2012
Microsoft Windows 10 -
Microsoft Windows 10 1803
Microsoft Windows Server 2019 -
Microsoft Windows 10 1809
Microsoft Windows Server 2016 1903
Microsoft Windows 10 1903
Microsoft Windows Server 2016 1909
Microsoft Windows 10 1909
Microsoft Windows 10 2004
Microsoft Windows Server 2016 2004
Microsoft Windows 10 20h2
Microsoft Windows Server 2016 20h2
578
VMScore
CVE-2021-45891
An issue exists in Softwarebuero Zauner ARC 4.2.0.4., that allows malicious users to escalate privileges within the application, since all permission checks are done client-side, not server-side.
Zauner Arc 4.2.0.4
445
VMScore
CVE-2022-29567
The default configuration of a TreeGrid component uses Object::toString as a key on the client-side and server communication in Vaadin 14.8.5 up to and including 14.8.9, 22.0.6 up to and including 22.0.14, 23.0.0.beta2 up to and including 23.0.8 and 23.1.0.alpha1 up to and includ...
Vaadin Vaadin 23.0.0
Vaadin Vaadin
Vaadin Vaadin 23.1.0
828
VMScore
CVE-2009-2875
Buffer overflow in atas32.dll in the Cisco WebEx WRF Player 26.x prior to 26.49.32 for Windows, 27.x prior to 27.10.x for Windows, 26.x prior to 26.49.35 for Mac OS X and Linux, and 27.x prior to 27.11.8 for Mac OS X and Linux allows remote malicious users to cause a denial of se...
Cisco Webex 27.00
Cisco Webex 26.00
828
VMScore
CVE-2009-2876
Heap-based buffer overflow in atas32.dll in the Cisco WebEx WRF Player 26.x prior to 26.49.32 (aka T26SP49EP32) for Windows, 27.x prior to 27.10.x (aka T27SP10) for Windows, 26.x prior to 26.49.35 for Mac OS X and Linux, and 27.x prior to 27.11.8 for Mac OS X and Linux allows rem...
Cisco Webex 27.00
Cisco Webex 26.00
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
7
8
9
10
NEXT »