Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
t. weber vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-5411
Missing input validation and OS command integration of the input in the ORing IAP-420 web-interface allows authenticated command injection.This issue affects IAP-420 version 2.01e and below.
NA
CVE-2024-5421
SEH utnserver Pro/ProMAX and INU-100 version 20.1.22 suffers from cross site scripting, denial of service, and file disclosure vulnerabilities.
NA
CVE-2024-5422
SEH utnserver Pro/ProMAX and INU-100 version 20.1.22 suffers from cross site scripting, denial of service, and file disclosure vulnerabilities.
NA
CVE-2024-5420
SEH utnserver Pro/ProMAX and INU-100 version 20.1.22 suffers from cross site scripting, denial of service, and file disclosure vulnerabilities.
NA
CVE-2022-40005
Intelbras WiFiber 120AC inMesh prior to 1-1-220826 allows command injection by authenticated users, as demonstrated by the /boaform/formPing6 and /boaform/formTracert URIs for ping and traceroute.
Intelbras Wifiber 120ac Inmesh Firmware
NA
CVE-2022-40282
The web server of Hirschmann BAT-C2 prior to 09.13.01.00R04 allows authenticated command injection. This allows an authenticated malicious user to pass commands to the shell of the system because the dir parameter of the FsCreateDir Ajax function is not sufficiently sanitized. Th...
Belden Hirschmann Bat-c2 Firmware
4.3
CVSSv2
CVE-2015-9261
huft_build in archival/libarchive/decompress_gunzip.c in BusyBox prior to 1.27.2 misuses a pointer, causing segfaults and an application crash during an unzip operation on a specially crafted ZIP file.
Busybox Busybox
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
5
CVSSv2
CVE-2016-2147
Integer overflow in the DHCP client (udhcpc) in BusyBox prior to 1.25.0 allows remote malicious users to cause a denial of service (crash) via a malformed RFC1035-encoded domain name, which triggers an out-of-bounds heap write.
Busybox Busybox
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 14.04
7.5
CVSSv2
CVE-2016-2148
Heap-based buffer overflow in the DHCP client (udhcpc) in BusyBox prior to 1.25.0 allows remote malicious users to have unspecified impact via vectors involving OPTION_6RD parsing.
Busybox Busybox
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 14.04
7.5
CVSSv2
CVE-2020-12501
Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE, ES9528/ES9528-XT (all versions) use undocumented accounts.
Pepperl-fuchs Es7510-xt Firmware
Pepperl-fuchs Es8509-xt Firmware
Pepperl-fuchs Es8510-xt Firmware
Pepperl-fuchs Es9528-xtv2 Firmware
Pepperl-fuchs Es7506 Firmware
Pepperl-fuchs Es7510 Firmware
Pepperl-fuchs Es7528 Firmware
Pepperl-fuchs Es8508 Firmware
Pepperl-fuchs Es8508f Firmware
Pepperl-fuchs Es8510 Firmware
Pepperl-fuchs Es8510-xte Firmware
Pepperl-fuchs Es9528 Firmware
Pepperl-fuchs Es9528-xt Firmware
Korenix Jetnet5428g-20sfp Firmware -
Korenix Jetnet5810g Firmware -
Korenix Jetnet4510 Firmware -
Korenix Jetnet5010 Firmware -
Korenix Jetnet5310 Firmware -
Korenix Jetnet6095 Firmware -
Korenix Jetnet4706 Firmware -
Korenix Jetwave 3220 Firmware -
Korenix Jetwave 2311 Firmware -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »