Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rpm rpm vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2020-10512
HGiga C&Cmail CCMAILQ before olln-calendar-6.0-100.i386.rpm and CCMAILN before olln-calendar-5.0-100.i386.rpm contains a SQL Injection vulnerability which allows malicious users to injecting SQL commands in the URL parameter to execute unauthorized commands.
Hgiga Oaklouds Ccm@il -
7.8
CVSSv2
CVE-2019-9512
Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consum...
Apple Swiftnio
Apache Traffic Server
Debian Debian Linux 10.0
Nodejs Node.js
2 Github repositories
1 Article
7.8
CVSSv2
CVE-2019-9514
Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer...
Apple Swiftnio
Apache Traffic Server
Debian Debian Linux 10.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Debian Debian Linux 9.0
Synology Skynas -
Synology Diskstation Manager 6.2
Synology Vs960hd Firmware -
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.0
Opensuse Leap 15.1
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Software Collections 1.0
Redhat Openshift Container Platform 3.9
Redhat Openshift Container Platform 3.11
Redhat Openshift Container Platform 3.10
Redhat Jboss Core Services 1.0
Redhat Enterprise Linux 8.0
1 Article
7.6
CVSSv2
CVE-2013-6435
Race condition in RPM 4.11.1 and previous versions allows remote malicious users to execute arbitrary code via a crafted RPM file whose installation extracts the contents to temporary files before validating the signature, as demonstrated by installing a file in the /etc/cron.d d...
Rpm Rpm 2.3.5
Rpm Rpm 4.4.2.1
Rpm Rpm 1.4.3
Rpm Rpm 3.0.1
Rpm Rpm 4.1
Rpm Rpm 2.2.3.11
Rpm Rpm 4.8.0
Rpm Rpm 2.4.4
Rpm Rpm 2.3.8
Rpm Rpm 2.0.6
Rpm Rpm 1.4.4
Rpm Rpm 1.4.2/a
Rpm Rpm 2.4.1
Rpm Rpm 2.4.9
Rpm Rpm 2.6.7
Rpm Rpm 1.4
Rpm Rpm 2.0.10
Rpm Rpm 2.4.5
Rpm Rpm 4.9.0
Rpm Rpm 4.0.1
Rpm Rpm 4.9.1.2
Rpm Rpm 2.2.11
7.6
CVSSv2
CVE-2008-6085
Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, when configured to scan inside compressed archives, allows remote malicious users to execute arbitrary code via a crafted RPM compre...
F-secure F-secure Anti-virus For Workstations 7.11
F-secure F-secure Protection Service For Consumers 5.00
F-secure F-secure Anti-virus 2008
F-secure F-secure Anti-virus 2006
F-secure F-secure Anti-virus 2007
F-secure F-secure Anti-virus Linux Client Security 5.30
F-secure F-secure Anti-virus For Microsoft Exchange 7.00
F-secure F-secure Protection Service For Consumers 7.00
F-secure F-secure Internet Security 2008
F-secure F-secure Protection Service For Business
F-secure F-secure Linux Security
F-secure F-secure Anti-virus For Microsoft Exchange
F-secure F-secure Anti-virus 7.02
F-secure F-secure Anti-virus For Microsoft Exchange 6.62
F-secure F-secure Messaging Security Gateway 4.0.7
F-secure F-secure Anti-virus For Citrix Servers
F-secure F-secure Internet Gatekeeper For Linux
F-secure F-secure Anti-virus Linux Server Security 5.52
F-secure F-secure Client Security
F-secure F-secure Anti-virus Linux Server Security 5.30
F-secure F-secure Protection Service For Consumers
F-secure F-secure Anti-virus For Windows Servers
7.6
CVSSv2
CVE-2004-0258
Multiple buffer overflows in RealOne Player, RealOne Player 2.0, RealOne Enterprise Desktop, and RealPlayer Enterprise allow remote malicious users to execute arbitrary code via malformed (1) .RP, (2) .RT, (3) .RAM, (4) .RPM or (5) .SMIL files.
Realnetworks Realone Desktop Manager
Realnetworks Realone Player 6.0.11.841
Realnetworks Realone Player 2.0
Realnetworks Realone Enterprise Desktop 6.0.11.774
Realnetworks Realplayer 8.0
Realnetworks Realplayer 10.0 Beta
Realnetworks Realone Player 6.0.11.830
Realnetworks Realone Player 6.0.11.868
Realnetworks Realone Player 1.0
Realnetworks Realone Player 6.0.11.818
Realnetworks Realone Player 6.0.11.853
7.5
CVSSv2
CVE-2022-23132
During Zabbix installation from RPM, DAC_OVERRIDE SELinux capability is in use to access PID files in [/var/run/zabbix] folder. In this case, Zabbix Proxy or Server processes can bypass file read, write and execute permissions check on the file system level
Zabbix Zabbix 6.0.0
Zabbix Zabbix
Fedoraproject Fedora 34
Fedoraproject Fedora 35
7.5
CVSSv2
CVE-2021-31414
The unofficial vscode-rpm-spec extension prior to 0.3.2 for Visual Studio Code allows remote code execution via a crafted workspace configuration.
Rpm Spec Project Rpm Spec
7.5
CVSSv2
CVE-2011-4183
A vulnerability in open build service allows remote malicious users to upload arbitrary RPM files. Affected releases are SUSE open build service before 2.1.16.
Opensuse Open Build Service
7.5
CVSSv2
CVE-2011-2645
Unspecified vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to execute arbitrary code via a crafted filename for a custom RPM.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »