Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.8 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2018-1000124
I Librarian I-librarian version 4.8 and previous versions contains a XML External Entity (XXE) vulnerability in line 154 of importmetadata.php(simplexml_load_string) that can result in an attacker reading the contents of a file and SSRF. This attack appear to be exploitable via p...
I-librarian I\\, Librarian
668
VMScore
CVE-2017-5897
The ip6gre_err function in net/ipv6/ip6_gre.c in the Linux kernel allows remote malicious users to have unspecified impact via vectors involving GRE flags in an IPv6 packet, which trigger an out-of-bounds access.
Linux Linux Kernel
Canonical Ubuntu Linux 14.04
Debian Debian Linux 8.0
668
VMScore
CVE-2005-1248
Buffer overflow in Apple iTunes prior to 4.8 allows remote malicious users to execute arbitrary code via a crafted MPEG4 file.
Apple Itunes 4.2.72
Apple Itunes 4.7
Apple Itunes 4.7.1
Apple Itunes 4.5
Apple Itunes 4.6
668
VMScore
CVE-2005-0764
Buffer overflow in command.C for rxvt-unicode prior to 5.3 allows remote malicious users to execute arbitrary code via a crafted file containing long escape sequences.
Marc Lehmann Rxvt-unicode 3.7
Marc Lehmann Rxvt-unicode 3.9
Marc Lehmann Rxvt-unicode 4.6
Marc Lehmann Rxvt-unicode 4.8
Marc Lehmann Rxvt-unicode 3.4
Marc Lehmann Rxvt-unicode 3.5
Marc Lehmann Rxvt-unicode 4.9
Marc Lehmann Rxvt-unicode 5.0
Marc Lehmann Rxvt-unicode 5.1
Marc Lehmann Rxvt-unicode 5.2
Marc Lehmann Rxvt-unicode 4.0
Marc Lehmann Rxvt-unicode 4.1
Marc Lehmann Rxvt-unicode 4.2
Marc Lehmann Rxvt-unicode 4.3
Marc Lehmann Rxvt-unicode 4.4
Marc Lehmann Rxvt-unicode 3.6
Marc Lehmann Rxvt-unicode 3.8
Marc Lehmann Rxvt-unicode 4.5
Marc Lehmann Rxvt-unicode 4.7
642
VMScore
CVE-2016-9083
drivers/vfio/pci/vfio_pci.c in the Linux kernel up to and including 4.8.11 allows local users to bypass integer overflow checks, and cause a denial of service (memory corruption) or have unspecified other impact, by leveraging access to a vfio PCI device file for a VFIO_DEVICE_SE...
Linux Linux Kernel
641
VMScore
CVE-2017-7187
The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel up to and including 4.10.4 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a large command size in an SG_NEXT_CMD_LEN ioctl call, leading to ...
Linux Linux Kernel
641
VMScore
CVE-2005-0610
Multiple symlink vulnerabilities in portupgrade prior to 20041226_2 in FreeBSD allow local users to (1) overwrite arbitrary files and possibly replace packages to execute arbitrary code via pkg_fetch, (2) overwrite arbitrary files via temporary files when portupgrade upgrades a p...
Freebsd Freebsd 4.10
Freebsd Freebsd 4.11
Freebsd Freebsd 4.5
Freebsd Freebsd 4.8
Freebsd Freebsd 4.9
Freebsd Freebsd 5.3
Freebsd Freebsd 4.1
Freebsd Freebsd 4.1.1
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
Freebsd Freebsd 4.4
Freebsd Freebsd 4.6.2
Freebsd Freebsd 4.6
Freebsd Freebsd 4.7
Freebsd Freebsd 5.0
Freebsd Freebsd 5.1
Freebsd Freebsd 5.2.1
Freebsd Freebsd 5.4
Freebsd Freebsd 4.0
Freebsd Freebsd 5.2
605
VMScore
CVE-2020-1147
A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'.
Microsoft .net Core 2.1
Microsoft .net Core 3.1
Microsoft .net Framework 2.0
Microsoft .net Framework 3.0
Microsoft .net Framework 3.5
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6
Microsoft .net Framework 4.8
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Server 2019
Microsoft Visual Studio 2019
Microsoft Visual Studio 2017
1 Article
605
VMScore
CVE-2019-14867
A flaw was found in IPA, all 4.6.x versions prior to 4.6.7, all 4.7.x versions prior to 4.7.4 and all 4.8.x versions prior to 4.8.3, in the way the internal function ber_scanf() was used in some components of the IPA server, which parsed kerberos key data. An unauthenticated atta...
Freeipa Freeipa
Fedoraproject Fedora 30
Fedoraproject Fedora 31
1 Github repository
605
VMScore
CVE-2015-0209
Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL prior to 0.9.8zf, 1.0.0 prior to 1.0.0r, 1.0.1 prior to 1.0.1m, and 1.0.2 prior to 1.0.2a might allow remote malicious users to cause a denial of service (memory corruption and applica...
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.0n
Openssl Openssl 1.0.0c
Openssl Openssl 1.0.0i
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.0m
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.0h
Openssl Openssl 1.0.0e
Openssl Openssl 1.0.0f
Openssl Openssl 1.0.0d
Openssl Openssl 1.0.0j
Openssl Openssl 1.0.0p
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.0o
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.0k
Openssl Openssl 1.0.1k
Openssl Openssl 1.0.0
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1e
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »