Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alarm vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2011-2591
Multiple buffer overflows in the Provideo ActiveX controls allow remote malicious users to execute arbitrary code via crafted input fields, as demonstrated by (1) a long strIp argument to the voice method in 2way.dll in the alarm 1.0.3.1 ActiveX control, (2) a network response to...
Provideo Paxplayer Activex Control 3.0.0.9
Provideo Gmax Activex Control 2.0.8.2
Provideo Alarm Activex Control 3.0.0.9
516
VMScore
CVE-2015-7285
CSL DualCom GPRS CS2300-R devices with firmware 1.25 up to and including 3.53 do not require authentication from Alarm Receiving Center (ARC) servers, which allows man-in-the-middle malicious users to bypass intended access restrictions via a spoofed HSxx response.
Csl Dualcom Gprs Cs2300-r Firmware 1.25
Csl Dualcom Gprs Cs2300-r Firmware 3.53
1 Article
570
VMScore
CVE-2015-7286
CSL DualCom GPRS CS2300-R devices with firmware 1.25 up to and including 3.53 rely on a polyalphabetic substitution cipher with hardcoded keys, which makes it easier for remote malicious users to defeat a cryptographic protection mechanism by capturing IP or V.22bis PSTN protocol...
Csl Dualcom Gprs Cs2300-r Firmware 1.25
Csl Dualcom Gprs Cs2300-r Firmware 3.53
1 Article
668
VMScore
CVE-2015-7287
CSL DualCom GPRS CS2300-R devices with firmware 1.25 up to and including 3.53 use the same 001984 default PIN across different customers' installations, which allows remote malicious users to execute commands by leveraging knowledge of this PIN and including it in an SMS mes...
Csl Dualcom Gprs Cs2300-r Firmware 1.25
Csl Dualcom Gprs Cs2300-r Firmware 3.53
1 Article
383
VMScore
CVE-2015-7288
CSL DualCom GPRS CS2300-R devices with firmware 1.25 up to and including 3.53 allow remote malicious users to modify the configuration via a command in an SMS message, as demonstrated by a "4 2" command.
Csl Dualcom Gprs Cs2300-r Firmware 3.53
Csl Dualcom Gprs Cs2300-r Firmware 1.25
1 Article
755
VMScore
CVE-2005-3560
Zone Labs (1) ZoneAlarm Pro 6.0, (2) ZoneAlarm Internet Security Suite 6.0, (3) ZoneAlarm Anti-Virus 6.0, (4) ZoneAlarm Anti-Spyware 6.0 up to and including 6.1, and (5) ZoneAlarm 6.0 allow remote malicious users to bypass the "Advanced Program Control and OS Firewall filter...
Zonelabs Zonealarm 6.0
Zonelabs Zonealarm Anti-spyware 6.1
Zonelabs Zonealarm Antivirus 6.0
Zonelabs Zonealarm Anti-spyware 6.0
Zonelabs Zonealarm Security Suite 6.0
1 EDB exploit
NA
CVE-2022-22221
An Improper Neutralization of Special Elements vulnerability in the download manager of Juniper Networks Junos OS on SRX Series and EX Series allows a locally authenticated attacker with low privileges to take full control over the device. One aspect of this vulnerability is that...
Juniper Junos 19.2
Juniper Junos 19.3
Juniper Junos 19.4
Juniper Junos
Juniper Junos 20.1
Juniper Junos 20.2
Juniper Junos 20.3
Juniper Junos 20.4
Juniper Junos 21.1
Juniper Junos 21.2
Juniper Junos 21.3
Juniper Junos 21.4
1 Article
NA
CVE-2022-31206
The Omron SYSMAC Nx product family PLCs (NJ series, NY series, NX series, and PMAC series) through 2022-005-18 lack cryptographic authentication. These PLCs are programmed using the SYMAC Studio engineering software (which compiles IEC 61131-3 conformant POU code to native machin...
Omron Nx701-1600 Firmware
Omron Nx701-1620 Firmware
Omron Nx701-1700 Firmware
Omron Nx701-1720 Firmware
Omron Nx701-z600 Firmware
Omron Nx701-z700 Firmware
Omron Nj101-1000 Firmware
Omron Nj101-1020 Firmware
Omron Nj101-9000 Firmware
Omron Nj101-9020 Firmware
Omron Nj301-1100 Firmware
Omron Nj301-1200 Firmware
Omron Nj501-1300 Firmware
Omron Nj501-1320 Firmware
Omron Nj501-1340 Firmware
Omron Nj501-1400 Firmware
Omron Nj501-1420 Firmware
Omron Nj501-1500 Firmware
Omron Nj501-1520 Firmware
Omron Nj501-4300 Firmware
Omron Nj501-4320 Firmware
Omron Nj501-4400 Firmware
1 Article
NA
CVE-2022-29957
The Emerson DeltaV Distributed Control System (DCS) through 2022-04-29 mishandles authentication. It utilizes several proprietary protocols for a wide variety of functionality. These protocols include Firmware upgrade (18508/TCP, 18518/TCP); Plug-and-Play (18510/UDP); Hawk servic...
Emerson Deltav Distributed Control System
1 Article
NA
CVE-2022-30317
Honeywell Experion LX through 2022-05-06 has Missing Authentication for a Critical Function. According to FSCT-2022-0055, there is a Honeywell Experion LX Control Data Access (CDA) EpicMo protocol with unauthenticated functionality issue. The affected components are characterized...
Honeywell Experion Lx Firmware
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »