Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
storm vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2017-9799
It was found that under some situations and configurations of Apache Storm 1.x prior to 1.0.4 and 1.1.x prior to 1.1.1, it is theoretically possible for the owner of a topology to trick the supervisor to launch a worker as a different, non-root, user. In the worst case this could...
Apache Storm 1.0.2
Apache Storm 1.1
Apache Storm 1.0.1
Apache Storm 1.0.3
Apache Storm 1.0
8.6
CVSSv3
CVE-2021-0203
On Juniper Networks EX and QFX5K Series platforms configured with Redundant Trunk Group (RTG), Storm Control profile applied on the RTG interface might not take affect when it reaches the threshold condition. Storm Control enables the device to monitor traffic levels and to drop ...
Juniper Junos 15.1
Juniper Junos 16.1
Juniper Junos 17.2
Juniper Junos 17.4
Juniper Junos 18.1
Juniper Junos 18.2
Juniper Junos 18.3
Juniper Junos 18.4
Juniper Junos 19.1
Juniper Junos 19.2
Juniper Junos 19.3
Juniper Junos 19.4
Juniper Junos 20.1
7.8
CVSSv3
CVE-2021-40162
A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40163
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processing component.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40164
A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40165
A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocated buffer while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40166
A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by malicious users to execute arbitrary code.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2019-12777
An issue exists on the ENTTEC Datagate MK2, Storm 24, Pixelator, and E-Streamer MK2 with firmware 70044_update_05032019-482. They replace secure and protected directory permissions (set as default by the underlying operating system) with highly insecure read, write, and execute d...
Enttec Datagate Mk2 Firmware 70044
Enttec Storm 24 Firmware 70044
Enttec Pixelator Firmware 70044
Enttec E-streamer Mk2 Firmware 70044
7.5
CVSSv3
CVE-2023-44181
An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper Networks Junos OS QFX5k devices allows packets to be punted to ARP queue causing a l2 loop resulting in a DDOS violations and DDOS syslog. This issue is triggered when Storm control i...
Juniper Junos
Juniper Junos 20.2
Juniper Junos 20.3
Juniper Junos 20.4
Juniper Junos 21.1
Juniper Junos 21.2
Juniper Junos 21.3
Juniper Junos 21.4
Juniper Junos 22.1
Juniper Junos 22.2
7.5
CVSSv3
CVE-2023-28965
An Improper Check or Handling of Exceptional Conditions within the storm control feature of Juniper Networks Junos OS allows an attacker sending a high rate of traffic to cause a Denial of Service. Continued receipt and processing of these packets will create a sustained Denial o...
Juniper Junos
Juniper Junos 19.3
Juniper Junos 19.4
Juniper Junos 20.2
Juniper Junos 20.4
Juniper Junos 21.1
Juniper Junos 21.2
Juniper Junos 21.3
Juniper Junos 21.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »