Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
heartbeat vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2006-5873
Buffer overflow in the cluster_process_heartbeat function in cluster.c in layer 2 tunneling protocol network server (l2tpns) prior to 2.1.21 allows remote malicious users to cause a denial of service via a large heartbeat packet.
L2tpns L2tpns 1.1
L2tpns L2tpns 2.0.13
L2tpns L2tpns 2.1
Debian Debian Linux 3.1
NA
CVE-2023-47345
Buffer Overflow vulnerability in free5gc 3.3.0 allows malicious users to cause a denial of service via crafted PFCP message with malformed PFCP Heartbeat message whose Recovery Time Stamp IE length is mutated to zero.
Free5gc Free5gc 3.3.0
7.5
CVSSv2
CVE-2011-1654
Directory traversal vulnerability in the Heartbeat Web Service in CA.Itm.Server.ManagementWS.dll in the Management Server in CA Total Defense (TD) r12 before SE2 allows remote malicious users to execute arbitrary code via directory traversal sequences in the GUID parameter in an ...
Broadcom Total Defense R12
5
CVSSv2
CVE-2013-1213
Cisco NX-OS on the Nexus 1000V does not assign the proper priority to heartbeat messages from a Virtual Ethernet Module (VEM) to a Virtual Supervisor Module (VSM), which allows remote malicious users to cause a denial of service (false VEM unavailability report) via a flood of UD...
Cisco Nx-os -
Cisco Nexus 1000v -
NA
CVE-2023-23776
An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in FortiAnalyzer versions 7.2.0 up to and including 7.2.1, 7.0.0 up to and including 7.0.4 and 6.4.0 up to and including 6.4.10 may allow a remote authenticated malicious user to read the client...
Fortinet Fortianalyzer
5
CVSSv2
CVE-2018-20031
A Denial of Service vulnerability related to preemptive item deletion in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and previous versions allows a remote malicious user to send a combination of messages to lmgrd or the vendor daemon, causing the hea...
Flexera Flexnet Publisher
Oracle Communications Lsms
5
CVSSv2
CVE-2018-20032
A Denial of Service vulnerability related to message decoding in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and previous versions allows a remote malicious user to send a combination of messages to lmgrd or the vendor daemon, causing the heartbeat b...
Flexera Flexnet Publisher
Oracle Communications Lsms
NA
CVE-2022-4931
The BackupWordPress plugin for WordPress is vulnerable to information disclosure in versions up to, and including 3.12. This is due to missing authorization on the heartbeat_received() function that triggers on WordPress heartbeat. This makes it possible for authenticated attacke...
Xibodevelopment Backupwordpress
3.5
CVSSv2
CVE-2019-3769
Dell Wyse Management Suite versions before 1.4.1 contain a stored cross-site scripting vulnerability. A remote authenticated malicious user with low privileges could exploit this vulnerability to store malicious payload in the device heartbeat request. When victim users access th...
Dell Wyse Management Suite
5
CVSSv2
CVE-2018-20034
A Denial of Service vulnerability related to adding an item to a list in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and previous versions allows a remote malicious user to send a combination of messages to lmgrd or the vendor daemon, causing the hea...
Flexera Flexnet Publisher
Oracle Communications Lsms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »