Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
backdoor vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-3094
Malicious code exists in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific fun...
Tukaani Xz 5.6.1
Tukaani Xz 5.6.0
85 Github repositories
6 Articles
7.5
CVSSv2
CVE-2013-4211
A Code Execution Vulnerability exists in OpenX Ad Server 2.8.10 due to a backdoor in flowplayer-3.1.1.min.js library, which could let a remote malicious user execute arbitrary PHP code
Openx Openx 2.8.10
1 EDB exploit
10
CVSSv2
CVE-2014-6617
Softing FG-100 PB PROFIBUS firmware version FG-x00-PB_V2.02.0.00 contains a hardcoded password for the root account, which allows remote malicious users to obtain administrative access via a TELNET session.
Industrial.softing Fg-100 Pb Profibus Firmware Fg-x00-pb V2.02.0.00
NA
CVE-2022-32985
libnx_apl.so on Nexans FTTO GigaSwitch prior to 6.02N and 7.x prior to 7.02 implements a Backdoor Account for SSH logins on port 50200 or 50201.
Nexans Gigaswitch 641 Desk V5 Sfp-vi Firmware
Nexans Gigaswitch 642 Desk V5 Sfp-2vi Firmware
Nexans Gigaswitch V5 2tp(pd-f+) Sfp-vi 54vdc Firmware
Nexans Gigaswitch V5 2tp(pse+) Sfp-vi 54vdc Firmware
Nexans Gigaswitch V5 2tp Sfp-vi 54vdc Firmware
Nexans Gigaswitch V5 Sfp-2vi 230vac Firmware
Nexans Gigaswitch V5 Tp(pse+) Sfp-2vi 54vdc Firmware
Nexans Gigaswitch V5 Tp(pse+) Sfp-2vi 54vdc Ind Firmware
Nexans Gigaswitch V5 Tp(pse+) Sfp-2vi 54vdc Med Firmware
Nexans Gigaswitch V5 Tp Sfp-2vi 54vdc Firmware
Nexans Gigaswitch V5 Tp Sfp-2vi 54vdc Ind Firmware
Nexans Gigaswitch V5 Tp Sfp-2vi 54vdc Med Firmware
Nexans Gigaswitch V5 Tp Sfp-vi 230vac Firmware
10
CVSSv2
CVE-2001-0008
Backdoor account in Interbase database server allows remote malicious users to overwrite arbitrary files using stored procedures.
Borland Software Interbase 5.0
Borland Software Interbase 4.0
Firebirdsql Firebird
Borland Software Interbase 6.0
1 EDB exploit
8.5
CVSSv2
CVE-2012-1803
RuggedCom Rugged Operating System (ROS) 3.10.x and previous versions has a factory account with a password derived from the MAC Address field in the banner, which makes it easier for remote malicious users to obtain access by performing a calculation on this address value, and th...
Siemens Ruggedcom Rugged Operating System
1 EDB exploit
5
CVSSv2
CVE-2011-4046
The Dell KACE K2000 System Deployment Appliance stores the recovery account password in cleartext within a PHP script, which allows context-dependent malicious users to obtain sensitive information by examining script source code.
Dell Kace K2000 Systems Deployment Appliance
7.2
CVSSv2
CVE-2022-29854
A vulnerability in Mitel 6900 Series IP (MiNet) phones excluding 6970, versions 1.8 (1.8.0.12) and previous versions, could allow a unauthenticated attacker with physical access to the phone to gain root access due to insufficient access control for test functionality during syst...
Mitel Minet Firmware
7.2
CVSSv2
CVE-2022-29855
Mitel 6800 and 6900 Series SIP phone devices through 2022-04-27 have "undocumented functionality." A vulnerability in Mitel 6800 Series and 6900 Series SIP phones excluding 6970, versions 5.1 SP8 (5.1.0.8016) and previous versions, and 6.0 (6.0.0.368) up to and includin...
Mitel 6873i Sip Firmware
Mitel 6930 Sip Firmware
Mitel 6940 Sip Firmware
Mitel 6865i Sip Firmware
Mitel 6867i Sip Firmware
Mitel 6869i Sip Firmware
Mitel 6920 Sip Firmware
Mitel 6910 Sip Firmware
Mitel 6905 Sip Firmware
8.3
CVSSv2
CVE-2012-1515
VMware ESXi 3.5, 4.0, and 4.1 and ESX 3.5, 4.0, and 4.1 do not properly implement port-based I/O operations, which allows guest OS users to gain guest OS privileges by overwriting memory locations in a read-only memory block associated with the Virtual DOS Machine.
Vmware Esxi 4.1
Vmware Esxi 3.5
Vmware Esxi 4.0
Vmware Esx 4.1
Vmware Esx 3.5
Vmware Esx 4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »