Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jacob baines vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-6543
AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) prior to Version 2017 Update. Code is executed under the program runtime privileges, which could lead to the compromise of the machine.
Aveva Indusoft Web Studio 8.1
Aveva Indusoft Web Studio 8.0
Aveva Indusoft Web Studio 7.1
Aveva Indusoft Web Studio 6.1
Aveva Intouch Machine Edition 2014 R2
7.5
CVSSv3
CVE-2019-6545
AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) prior to Version 2017 Update. An unauthenticated remote user could use a specially crafted database connection configuration file to execute an arbitrary proce...
Aveva Indusoft Web Studio 8.1
Aveva Indusoft Web Studio 8.0
Aveva Indusoft Web Studio 7.1
Aveva Indusoft Web Studio 6.1
Aveva Intouch Machine Edition 2014 R2
5.9
CVSSv3
CVE-2020-5725
The Grandstream UCM6200 series prior to 1.0.20.22 is vulnerable to an SQL injection via the HTTP server's websockify endpoint. A remote unauthenticated attacker can invoke the login action with a crafted username and, through the use of timing attacks, can discover user pass...
Grandstream Ucm6202 Firmware
Grandstream Ucm6204 Firmware
Grandstream Ucm6208 Firmware
9.1
CVSSv3
CVE-2021-20034
An improper access control vulnerability in SMA100 allows a remote unauthenticated malicious user to bypass the path traversal checks and delete an arbitrary file potentially resulting in a reboot to factory default settings.
Sonicwall Sma 200 Firmware
Sonicwall Sma 210 Firmware
Sonicwall Sma 400 Firmware
Sonicwall Sma 410 Firmware
Sonicwall Sma 500v
7.5
CVSSv3
CVE-2020-5726
The Grandstream UCM6200 series prior to 1.0.20.22 is vulnerable to an SQL injection via the CTI server on port 8888. A remote unauthenticated attacker can invoke the challenge action with a crafted username and discover user passwords.
Grandstream Ucm6202 Firmware
Grandstream Ucm6204 Firmware
Grandstream Ucm6208 Firmware
8.8
CVSSv3
CVE-2020-5735
Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to crash the device and possibly execute arbitrary code.
Amcrest 1080-lite 8ch Firmware -
Amcrest Amdv10814-h5 Firmware -
Amcrest Ipm-721 Firmware
Amcrest Ip2m-841 Firmware
Amcrest Ip2m-841-v3 Firmware
Amcrest Ip2m-853ew Firmware
Amcrest Ip2m-858w Firmware
Amcrest Ip2m-866w Firmware
Amcrest Ip2m-866ew Firmware
Amcrest Ip4m-1053ew Firmware
Amcrest Ip8m-2454ew Firmware
Amcrest Ip8m-2493eb Firmware
Amcrest Ip8m-2496eb Firmware
Amcrest Ip8m-2597e Firmware
Amcrest Ip8m-mb2546ew Firmware
Amcrest Ip8m-mt2544ew Firmware
Amcrest Ip8m-t2499ew Firmware
Amcrest Ipm-hx1 Firmware
9.1
CVSSv3
CVE-2018-14847
MikroTik RouterOS up to and including 6.42 allows unauthenticated remote malicious users to read arbitrary files and remote authenticated malicious users to write arbitrary files due to a directory traversal vulnerability in the WinBox interface.
Mikrotik Routeros
1 EDB exploit
43 Github repositories
4 Articles
9.8
CVSSv3
CVE-2017-2741
A potential security vulnerability has been identified with HP PageWide Printers, HP OfficeJet Pro Printers, with firmware prior to 1708D. This vulnerability could potentially be exploited to execute arbitrary code.
Hp J9v82a Firmware
Hp J9v82b Firmware
Hp J9v82c Firmware
Hp J9v82d Firmware
Hp J6u55a Firmware
Hp J6u55b Firmware
Hp J6u55c Firmware
Hp J6u55d Firmware
Hp K9z76a Firmware
Hp K9z76d Firmware
Hp D3q17a Firmware
Hp D3q17c Firmware
Hp D3q17d Firmware
Hp D3q21a Firmware
Hp D3q21c Firmware
Hp D3q21d Firmware
Hp D3q20a Firmware
Hp D3q20b Firmware
Hp D3q20c Firmware
Hp D3q20d Firmware
Hp D3q16a Firmware
Hp D3q16b Firmware
2 EDB exploits
8.8
CVSSv3
CVE-2013-4863
The HomeAutomationGateway service in MiCasaVerde VeraLite with firmware 1.5.408 allows (1) remote malicious users to execute arbitrary Lua code via a RunLua action in a request to upnp/control/hag on port 49451 or (2) remote authenticated users to execute arbitrary Lua code via a...
Micasaverde Veralite Firmware 1.5.408
2 EDB exploits
1 Github repository
5.3
CVSSv3
CVE-2023-36844
A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series allows an unauthenticated, network-based malicious user to control certain, important environment variables. Using a crafted request an attacker is able to modify certain PHP env...
Juniper Junos
Juniper Junos 20.4
Juniper Junos 21.1
Juniper Junos 21.2
Juniper Junos 21.3
Juniper Junos 21.4
Juniper Junos 22.1
Juniper Junos 22.2
Juniper Junos 22.3
Juniper Junos 22.4
3 Github repositories
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »