Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloud backup vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2022-37027
Ahsay AhsayCBS 9.1.4.0 allows an authenticated system user to inject arbitrary Java JVM options. Administrators that can modify the Runtime Options in the web interface can inject Java Runtime Options. These take effect after a restart. For example, an attacker can enable JMX ser...
Ahsay Cloud Backup Suite 9.1.4.0
7.8
CVSSv3
CVE-2021-20226
A use-after-free flaw was found in the io_uring in Linux kernel, where a local attacker with a user privilege could cause a denial of service problem on the system The issue results from the lack of validating the existence of an object prior to performing operations on the objec...
Linux Linux Kernel
Netapp Cloud Backup -
NA
CVE-2014-5640
The CM Backup -Restore,Cloud,Photo (aka com.ijinshan.kbackup) application 1.1.0.135 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Cmcm Cm Backup Restore Cloud Photo 1.1.0.135
7.5
CVSSv3
CVE-2018-8011
By specially crafting HTTP requests, the mod_md challenge handler would dereference a NULL pointer and cause the child process to segfault. This could be used to DoS the server. Fixed in Apache HTTP Server 2.4.34 (Affected 2.4.33).
Apache Http Server 2.4.33
Netapp Cloud Backup -
4.4
CVSSv3
CVE-2020-12356
Out-of-bounds read in subsystem in Intel(R) AMT versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable information disclosure via local access.
Intel Active Management Technology Firmware
Netapp Cloud Backup -
7.8
CVSSv3
CVE-2020-8760
Integer overflow in subsystem for Intel(R) AMT versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70, 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access.
Intel Active Management Technology Firmware
Netapp Cloud Backup -
6.5
CVSSv3
CVE-2021-33068
Null pointer dereference in subsystem for Intel(R) AMT prior to 15.0.35 may allow an authenticated user to potentially enable denial of service via network access.
Intel Active Management Technology Firmware
Netapp Cloud Backup -
6.5
CVSSv3
CVE-2020-8746
Integer overflow in subsystem for Intel(R) AMT versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Intel Active Management Technology Firmware
Netapp Cloud Backup -
9.1
CVSSv3
CVE-2020-8747
Out-of-bounds read in subsystem for Intel(R) AMT versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure and/or denial of service via network access.
Intel Active Management Technology Firmware
Netapp Cloud Backup -
8.8
CVSSv3
CVE-2020-8749
Out-of-bounds read in subsystem for Intel(R) AMT versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
Intel Active Management Technology Firmware
Netapp Cloud Backup -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »