Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote code vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-3229
Because the web management interface for Unified Intents' Unified Remote solution does not itself require authentication, a remote, unauthenticated attacker can change or disable authentication requirements for the Unified Remote protocol, and leverage this now-unauthenticat...
Unifiedremote Unified Remote
7.8
CVSSv3
CVE-2023-6288
Code injection in Remote Desktop Manager 2023.3.9.3 and previous versions on macOS allows an malicious user to execute code via the DYLIB_INSERT_LIBRARIES environment variable.
Devolutions Remote Desktop Manager
7.8
CVSSv3
CVE-2021-28470
Visual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution Vulnerability
Microsoft Visual Studio Code Github Pull Requests And Issues
9.8
CVSSv3
CVE-2023-5766
A remote code execution vulnerability in Remote Desktop Manager 2023.2.33 and previous versions on Windows allows an malicious user to remotely execute code from another windows user session on the same host via a specially crafted TCP packet.
Devolutions Remote Desktop Manager
8.8
CVSSv3
CVE-2018-16169
Cybozu Remote Service 3.0.0 to 3.1.0 allows remote authenticated malicious users to upload and execute Java code file on the server via unspecified vectors.
Cybozu Remote Service Manager
9.8
CVSSv3
CVE-2023-52252
Unified Remote 3.13.0 allows remote malicious users to execute arbitrary Lua code because of a wildcarded Access-Control-Allow-Origin for the Remote upload endpoint.
Unifiedremote Unified Remote 3.13.0
8.8
CVSSv3
CVE-2018-16171
Directory traversal vulnerability in Cybozu Remote Service 3.0.0 to 3.1.8 allows remote malicious users to execute Java code file on the server via unspecified vectors.
Cybozu Remote Service Manager
9.8
CVSSv3
CVE-2021-27573
An issue exists in Emote Remote Mouse up to and including 4.0.0.0. Remote unauthenticated users can execute arbitrary code via crafted UDP packets with no prior authorization or authentication.
Remotemouse Emote Remote Mouse
8.8
CVSSv3
CVE-2023-33480
RemoteClinic 2.0 contains a critical vulnerability chain that can be exploited by a remote attacker with low-privileged user credentials to create admin users, escalate privileges, and execute arbitrary code on the target system via a PHP shell. The vulnerabilities are caused by ...
Remoteclinic Remote Clinic 2.0
10
CVSSv3
CVE-2023-45894
The Remote Application Server in Parallels RAS prior to 19.2.23975 does not segment virtualized applications from the server, which allows a remote malicious user to achieve remote code execution via standard kiosk breakout techniques.
Parallels Remote Application Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
9
10
NEXT »