Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
applied-risk.com vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-7267
Linear eMerge 50P/5000P devices allow Cookie Path Traversal.
Nortekcontrol Linear Emerge 50p Firmware
Nortekcontrol Linear Emerge 5000p Firmware
10
CVSSv3
CVE-2019-7268
Linear eMerge 50P/5000P devices allow Unauthenticated File Upload.
Nortekcontrol Linear Emerge 50p Firmware
Nortekcontrol Linear Emerge 5000p Firmware
9.8
CVSSv3
CVE-2019-7269
Linear eMerge 50P/5000P devices allow Authenticated Command Injection with root Code Execution.
Nortekcontrol Linear Emerge 50p Firmware
Nortekcontrol Linear Emerge 5000p Firmware
1 EDB exploit
5.3
CVSSv3
CVE-2019-7272
Optergy Proton/Enterprise devices allow Username Disclosure.
Optergy Enterprise
Optergy Proton
1 EDB exploit
8.8
CVSSv3
CVE-2019-7273
Optergy Proton/Enterprise devices allow Cross-Site Request Forgery (CSRF).
Optergy Proton
Optergy Enterprise
1 EDB exploit
9.8
CVSSv3
CVE-2019-7274
Optergy Proton/Enterprise devices allow Authenticated File Upload with Code Execution as root.
Optergy Proton
Optergy Enterprise
1 EDB exploit
6.1
CVSSv3
CVE-2019-7275
Optergy Proton/Enterprise devices allow Open Redirect.
Optergy Proton
Optergy Enterprise
9.8
CVSSv3
CVE-2019-7276
Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console.
Optergy Proton
Optergy Enterprise
1 EDB exploit
1 Github repository
9.8
CVSSv3
CVE-2019-7667
Prima Systems FlexAir, Versions 2.3.38 and prior. The application generates database backup files with a predictable name, and an attacker can use brute force to identify the database backup file name. A malicious actor can exploit this issue to download the database file and dis...
Primasystems Flexair
7.2
CVSSv3
CVE-2019-7670
Prima Systems FlexAir, Versions 2.3.38 and prior. The application incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component, which could allow malicious users to execute commands directly on the operating system.
Primasystems Flexair
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »