Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
heartbeat vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-42477
SAP NetWeaver AS Java (GRMG Heartbeat application) - version 7.50, allows an malicious user to send a crafted request from a vulnerable web application, causing limited impact on confidentiality and integrity of the application.
Sap Netweaver Application Server Java 7.50
NA
CVE-2023-47345
Buffer Overflow vulnerability in free5gc 3.3.0 allows malicious users to cause a denial of service via crafted PFCP message with malformed PFCP Heartbeat message whose Recovery Time Stamp IE length is mutated to zero.
Free5gc Free5gc 3.3.0
7.5
CVSSv2
CVE-2011-1654
Directory traversal vulnerability in the Heartbeat Web Service in CA.Itm.Server.ManagementWS.dll in the Management Server in CA Total Defense (TD) r12 before SE2 allows remote malicious users to execute arbitrary code via directory traversal sequences in the GUID parameter in an ...
Broadcom Total Defense R12
5
CVSSv2
CVE-2013-1213
Cisco NX-OS on the Nexus 1000V does not assign the proper priority to heartbeat messages from a Virtual Ethernet Module (VEM) to a Virtual Supervisor Module (VSM), which allows remote malicious users to cause a denial of service (false VEM unavailability report) via a flood of UD...
Cisco Nx-os -
Cisco Nexus 1000v -
NA
CVE-2023-23776
An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in FortiAnalyzer versions 7.2.0 up to and including 7.2.1, 7.0.0 up to and including 7.0.4 and 6.4.0 up to and including 6.4.10 may allow a remote authenticated malicious user to read the client...
Fortinet Fortianalyzer
5
CVSSv2
CVE-2018-20031
A Denial of Service vulnerability related to preemptive item deletion in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and previous versions allows a remote malicious user to send a combination of messages to lmgrd or the vendor daemon, causing the hea...
Flexera Flexnet Publisher
Oracle Communications Lsms
5
CVSSv2
CVE-2018-20032
A Denial of Service vulnerability related to message decoding in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and previous versions allows a remote malicious user to send a combination of messages to lmgrd or the vendor daemon, causing the heartbeat b...
Flexera Flexnet Publisher
Oracle Communications Lsms
5
CVSSv2
CVE-2018-20034
A Denial of Service vulnerability related to adding an item to a list in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and previous versions allows a remote malicious user to send a combination of messages to lmgrd or the vendor daemon, causing the hea...
Flexera Flexnet Publisher
Oracle Communications Lsms
3.5
CVSSv2
CVE-2019-3769
Dell Wyse Management Suite versions before 1.4.1 contain a stored cross-site scripting vulnerability. A remote authenticated malicious user with low privileges could exploit this vulnerability to store malicious payload in the device heartbeat request. When victim users access th...
Dell Wyse Management Suite
NA
CVE-2022-4931
The BackupWordPress plugin for WordPress is vulnerable to information disclosure in versions up to, and including 3.12. This is due to missing authorization on the heartbeat_received() function that triggers on WordPress heartbeat. This makes it possible for authenticated attacke...
Xibodevelopment Backupwordpress
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »