Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
associated vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-7005
Kontrol and Elock locks are electronic locks that utilize firmware provided by Sciener. This firmware works in tandem with an app, called the TTLock app, which is also produced by Sciener. The TTLock app utilizes Bluetooth connections to connect to locks that utilize the Sciener ...
NA
CVE-2023-7006
The unlockKey character in a lock using Sciener firmware can be brute forced through repeated challenge requests, compromising the locks integrity.
NA
CVE-2023-7007
Sciener server does not validate connection requests from the GatewayG2, allowing an impersonation attack that provides the attacker the unlockKey field.
NA
CVE-2023-7009
Some Sciener-based locks support plaintext message processing over Bluetooth Low Energy, allowing unencrypted malicious commands to be passed to the lock. These malicious commands, less then 16 bytes in length, will be processed by the lock as if they were encrypted communication...
NA
CVE-2023-7017
Sciener locks' firmware update mechanism do not authenticate or validate firmware updates if passed to the lock through the Bluetooth Low Energy service. A challenge request can be sent to the lock with a command to prepare for an update, rather than an unlock request, allow...
NA
CVE-2023-20212
A vulnerability in the AutoIt module of ClamAV could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a logic error in the memory management of an affected device. An attacker could ex...
Cisco Secure Endpoint Private Cloud
Cisco Secure Endpoint
801
VMScore
CVE-2021-1411
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an malicious user to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept pro...
Cisco Jabber
1 Article
356
VMScore
CVE-2021-1417
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an malicious user to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept pro...
Cisco Jabber
356
VMScore
CVE-2021-1418
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an malicious user to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept pro...
Cisco Jabber
578
VMScore
CVE-2021-1469
Multiple vulnerabilities in Cisco Jabber for Windows, Cisco Jabber for MacOS, and Cisco Jabber for mobile platforms could allow an malicious user to execute arbitrary programs on the underlying operating system with elevated privileges, access sensitive information, intercept pro...
Cisco Jabber
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »