Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
steffen robertz vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-4286
A reflected cross-site scripting (XSS) vulnerability exists in System Diagnostics Manager of B&R Automation Runtime versions >=3.00 and <=C4.93 that enables a remote malicious user to execute arbitrary JavaScript in the context of the users browser session.
Br-automation Automation Runtime
188
VMScore
CVE-2022-20660
A vulnerability in the information storage architecture of several Cisco IP Phone models could allow an unauthenticated, physical malicious user to obtain confidential information from an affected device. This vulnerability is due to unencrypted storage of confidential informatio...
Cisco Ip Conference Phone 7832 Firmware
Cisco Ip Conference Phone 8832 Firmware
Cisco Ip Phone 7811 Firmware
Cisco Ip Phone 7821 Firmware
Cisco Ip Phone 7841 Firmware
Cisco Ip Phone 7861 Firmware
Cisco Ip Phone 8811 Firmware
Cisco Ip Phone 8841 Firmware
Cisco Ip Phone 8845 Firmware
Cisco Ip Phone 8851 Firmware
Cisco Ip Phone 8861 Firmware
Cisco Ip Phone 8865 Firmware
Cisco Unified Ip Conference Phone 8831 Firmware -
Cisco Unified Ip Conference Phone 8831 For Third-party Call Control Firmware -
Cisco Unified Ip Phone 7945g Firmware -
Cisco Unified Ip Phone 7965g Firmware -
Cisco Unified Ip Phone 7975g Firmware -
Cisco Unified Sip Phone 3905 Firmware
Cisco Wireless Ip Phone 8821 Firmware
Cisco Wireless Ip Phone 8821-ex Firmware
NA
CVE-2022-30981
An issue exists in Gentics CMS prior to 5.43.1. By uploading a malicious ZIP file, an attacker is able to deserialize arbitrary data and hence can potentially achieve Java code execution.
Gentics Gentics Cms
NA
CVE-2022-30982
An issue exists in Gentics CMS prior to 5.43.1. There is stored XSS in the profile description and in the username.
Gentics Gentics Cms
445
VMScore
CVE-2021-34593
In CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56 unauthenticated crafted invalid requests may result in several denial-of-service conditions. Running PLC programs may be stopped, memory may be leaked, or further communication clients may be block...
Codesys Plcwinnt
Codesys Runtime Toolkit
445
VMScore
CVE-2022-27480
A vulnerability has been identified in SICAM A8000 CP-8031 (All versions < V4.80), SICAM A8000 CP-8050 (All versions < V4.80). Affected devices do not require an user to be authenticated to access certain files. This could allow unauthenticated malicious users to download t...
Siemens Sicam A8000 Cp-8031 Firmware
Siemens Sicam A8000 Cp-8050 Firmware
383
VMScore
CVE-2021-45034
A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions < V16.20), CP-8000 MASTER MODULE WITH I/O -40/+70°C (All versions < V16.20), CP-8021 MASTER MODULE (All versions < V16.20), CP-8022 MASTER MODULE WITH GPRS (All versions...
Siemens Cp-8000 Master Module With I\\/o -25\\/\\+70 Firmware
Siemens Cp-8000 Master Module With I\\/o -40\\/\\+70 Firmware
Siemens Cp-8021 Master Module Firmware
Siemens Cp-8022 Master Module With Gprs Firmware
NA
CVE-2022-31212
An issue exists in dbus-broker prior to 31. It depends on c-uitl/c-shquote to parse the DBus service's Exec line. c-shquote contains a stack-based buffer over-read if a malicious Exec line is supplied.
Dbus-broker Project Dbus-broker
NA
CVE-2022-31213
An issue exists in dbus-broker prior to 31. Multiple NULL pointer dereferences can be found when supplying a malformed XML config file.
Dbus-broker Project Dbus-broker
NA
CVE-2022-39836
An issue exists in Connected Vehicle Systems Alliance (COVESA) dlt-daemon up to and including 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a heap-based buffer over-read of o...
Genivi Diagnostic Log And Trace
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »