Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jacob baines vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-6543
AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) prior to Version 2017 Update. Code is executed under the program runtime privileges, which could lead to the compromise of the machine.
Aveva Indusoft Web Studio 8.1
Aveva Indusoft Web Studio 8.0
Aveva Indusoft Web Studio 7.1
Aveva Indusoft Web Studio 6.1
Aveva Intouch Machine Edition 2014 R2
7.5
CVSSv3
CVE-2019-6545
AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) prior to Version 2017 Update. An unauthenticated remote user could use a specially crafted database connection configuration file to execute an arbitrary proce...
Aveva Indusoft Web Studio 8.1
Aveva Indusoft Web Studio 8.0
Aveva Indusoft Web Studio 7.1
Aveva Indusoft Web Studio 6.1
Aveva Intouch Machine Edition 2014 R2
8.1
CVSSv3
CVE-2019-3943
MikroTik RouterOS versions Stable 6.43.12 and below, Long-term 6.42.12 and below, and Testing 6.44beta75 and below are vulnerable to an authenticated, remote directory traversal via the HTTP or Winbox interfaces. An authenticated, remote attack can use this vulnerability to read ...
Mikrotik Routeros
Mikrotik Routeros 6.41
Mikrotik Routeros 6.42
Mikrotik Routeros 6.43
Mikrotik Routeros 6.44
1 Github repository
5.9
CVSSv3
CVE-2020-5725
The Grandstream UCM6200 series prior to 1.0.20.22 is vulnerable to an SQL injection via the HTTP server's websockify endpoint. A remote unauthenticated attacker can invoke the login action with a crafted username and, through the use of timing attacks, can discover user pass...
Grandstream Ucm6202 Firmware
Grandstream Ucm6204 Firmware
Grandstream Ucm6208 Firmware
9.8
CVSSv3
CVE-2020-3161
A vulnerability in the web server for Cisco IP Phones could allow an unauthenticated, remote malicious user to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of prop...
Cisco Ip Phone 8865 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8865 Firmware 11.0\\(1\\)
Cisco Ip Phone 8865 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 8851 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8851 Firmware 11.0\\(1\\)
Cisco Ip Phone 8851 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 7841 Firmware 11.0\\(1\\)
Cisco Ip Phone 7821 Firmware 11.0\\(1\\)
Cisco Ip Phone 8811 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8811 Firmware 11.0\\(1\\)
Cisco Ip Phone 8811 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 8861 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8861 Firmware 11.0\\(1\\)
Cisco Ip Phone 8861 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 8845 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8845 Firmware 11.0\\(1\\)
Cisco Ip Phone 8845 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 7861 Firmware 11.0\\(1\\)
Cisco Ip Phone 8841 Firmware 10.3\\(1\\)es14
Cisco Ip Phone 8841 Firmware 11.0\\(1\\)
Cisco Ip Phone 8841 Firmware 11.0\\(5\\)sr1
Cisco Ip Phone 7811 Firmware 11.0\\(1\\)
1 Github repository
7.5
CVSSv3
CVE-2019-3924
MikroTik RouterOS prior to 6.43.12 (stable) and 6.42.12 (long-term) is vulnerable to an intermediary vulnerability. The software will execute user defined network requests to both WAN and LAN clients. A remote unauthenticated attacker can use this vulnerability to bypass the rout...
Mikrotik Routeros
1 EDB exploit
9.1
CVSSv3
CVE-2018-14847
MikroTik RouterOS up to and including 6.42 allows unauthenticated remote malicious users to read arbitrary files and remote authenticated malicious users to write arbitrary files due to a directory traversal vulnerability in the WinBox interface.
Mikrotik Routeros
1 EDB exploit
43 Github repositories
4 Articles
9.8
CVSSv3
CVE-2017-2741
A potential security vulnerability has been identified with HP PageWide Printers, HP OfficeJet Pro Printers, with firmware prior to 1708D. This vulnerability could potentially be exploited to execute arbitrary code.
Hp J9v82a Firmware
Hp J9v82b Firmware
Hp J9v82c Firmware
Hp J9v82d Firmware
Hp J6u55a Firmware
Hp J6u55b Firmware
Hp J6u55c Firmware
Hp J6u55d Firmware
Hp K9z76a Firmware
Hp K9z76d Firmware
Hp D3q17a Firmware
Hp D3q17c Firmware
Hp D3q17d Firmware
Hp D3q21a Firmware
Hp D3q21c Firmware
Hp D3q21d Firmware
Hp D3q20a Firmware
Hp D3q20b Firmware
Hp D3q20c Firmware
Hp D3q20d Firmware
Hp D3q16a Firmware
Hp D3q16b Firmware
2 EDB exploits
8.8
CVSSv3
CVE-2013-4863
The HomeAutomationGateway service in MiCasaVerde VeraLite with firmware 1.5.408 allows (1) remote malicious users to execute arbitrary Lua code via a RunLua action in a request to upnp/control/hag on port 49451 or (2) remote authenticated users to execute arbitrary Lua code via a...
Micasaverde Veralite Firmware 1.5.408
2 EDB exploits
1 Github repository
5.3
CVSSv3
CVE-2023-36844
A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series allows an unauthenticated, network-based malicious user to control certain, important environment variables. Using a crafted request an attacker is able to modify certain PHP env...
Juniper Junos
Juniper Junos 20.4
Juniper Junos 21.1
Juniper Junos 21.2
Juniper Junos 21.3
Juniper Junos 21.4
Juniper Junos 22.1
Juniper Junos 22.2
Juniper Junos 22.3
Juniper Junos 22.4
3 Github repositories
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »