Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
core m vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2021-33105
Out-of-bounds read in some Intel(R) Core(TM) processors with Radeon(TM) RX Vega M GL integrated graphics before version 21.10 may allow an authenticated user to potentially enable information disclosure via local access.
Intel Core I5-8305g Firmware
Intel Core I7-8706g Firmware
NA
CVE-2007-2886
Unspecified vulnerability in the Nortel CS 1000 M media card in Enterprise VoIP-Core-CS 1000E, 1000M, and 1000S 04.50W prior to 20070523 in Meridian/CS 1000 allows remote malicious users to cause a denial of service (card hang) via unspecified vectors.
Nortel Communications Server 1000e
Nortel Communications Server 1000m
Nortel Communications Server 1000s
8.8
CVSSv3
CVE-2018-9926
An issue exists in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can add an admin account via index.php?m=core&f=power&v=add.
Wuzhicms Wuzhicms 4.1.0
1 EDB exploit
NA
CVE-2024-26627
In the Linux kernel, the following vulnerability has been resolved: scsi: core: Move scsi_host_busy() out of host lock for waking up EH handler Inside scsi_eh_wakeup(), scsi_host_busy() is called & checked with host lock every time for deciding if error handler kthread needs ...
6.1
CVSSv3
CVE-2018-14512
An XSS vulnerability exists in WUZHI CMS 4.1.0. There is persistent XSS that allows remote malicious users to inject arbitrary web script or HTML via the form[nickname] parameter to the index.php?m=core&f=set&v=sendmail URI. When the administrator accesses the "syste...
Wuzhicms Wuzhi Cms 4.1.0
7.8
CVSSv3
CVE-2020-12902
Arbitrary Decrement Privilege Escalation in AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of service.
Amd Radeon Software
NA
CVE-2015-0646
Memory leak in the TCP input module in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS up to and including 3.10.xS prior to 3.10.5S, and 3.11.xS and 3.12.xS prior to 3.12.3S allows remote malicious users to cause a denial of service (me...
Cisco Ios Xe 3.3xo.0
Cisco Ios Xe 3.5e.0
Cisco Ios Xe 3.10s.0
Cisco Ios Xe 3.10s.3
Cisco Ios Xe 3.10s.4
Cisco Ios Xe 3.5e.1
Cisco Ios Xe 3.5e.2
Cisco Ios Xe 3.8s.1
Cisco Ios Xe 3.8s.2
Cisco Ios Xe 3.10s.0a
Cisco Ios Xe 3.11s.1
Cisco Ios Xe 3.11s.3
Cisco Ios Xe 3.12s.1
Cisco Ios Xe 3.6e.1
Cisco Ios Xe 3.11s.4
Cisco Ios Xe 3.8s Base
Cisco Ios Xe 3.8s.0
Cisco Ios Xe 3.10s.1
Cisco Ios Xe 3.10s.2
Cisco Ios Xe 3.9s.2
Cisco Ios Xe 3.11s.0
Cisco Ios Xe 3.5e.3
6.5
CVSSv3
CVE-2017-12238
A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco IOS 15.0 up to and including 15.4 for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent malicious user to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting ...
Cisco Ios 15.1\\(1\\)sy2
Cisco Ios 15.2\\(1\\)sy4
Cisco Ios 15.1\\(2\\)sy
Cisco Ios 15.1\\(2\\)sy8
Cisco Ios 15.1\\(1\\)sy6
Cisco Ios 15.2\\(2\\)sy
Cisco Ios 15.1\\(2\\)sy7
Cisco Ios 15.2\\(2\\)sy1
Cisco Ios 15.2\\(1\\)sy3
Cisco Ios 15.1\\(2\\)sy4
Cisco Ios 15.1\\(2\\)sy1
Cisco Ios 15.1\\(2\\)sy9
Cisco Ios 15.1\\(1\\)sy1
Cisco Ios 15.2\\(1\\)sy2
Cisco Ios 15.1\\(2\\)sy5
Cisco Ios 15.1\\(1\\)sy3
Cisco Ios 15.1\\(1\\)sy
Cisco Ios 15.2\\(1\\)sy1a
Cisco Ios 15.3\\(1\\)sy2
Cisco Ios 15.0\\(1\\)sy1
Cisco Ios 15.1\\(2\\)sy6
Cisco Ios 15.1\\(2\\)sy10
7.5
CVSSv3
CVE-2020-25649
A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly. This flaw allows vulnerability to XML external entity (XXE) attacks. The highest threat from this vulnerability is data integrity.
Fasterxml Jackson-databind
Netapp Oncommand Workflow Automation -
Netapp Service Level Manager -
Netapp Oncommand Api Services -
Fedoraproject Fedora 32
Quarkus Quarkus
Apache Iotdb
Oracle Webcenter Portal 12.2.1.3.0
Oracle Banking Platform 2.6.2
Oracle Utilities Framework 4.3.0.5.0
Oracle Utilities Framework 4.3.0.6.0
Oracle Utilities Framework 4.4.0.0.0
Oracle Agile Plm 9.3.6
Oracle Coherence 12.2.1.4.0
Oracle Webcenter Portal 12.2.1.4.0
Oracle Sd-wan Edge 9.0
Oracle Coherence 14.1.1.0.0
Oracle Utilities Framework 4.4.0.2.0
Oracle Communications Billing And Revenue Management 12.0.0.3.0
Oracle Communications Billing And Revenue Management 7.5.0.23.0
Oracle Communications Services Gatekeeper 7.0
Oracle Banking Platform 2.7.0
1 Github repository
1 Article
NA
CVE-2009-1046
The console selection feature in the Linux kernel 2.6.28 prior to 2.6.28.4, 2.6.25, and possibly earlier versions, when the UTF-8 console is used, allows physically proximate malicious users to cause a denial of service (memory corruption) by selecting a small number of 3-byte UT...
Linux Linux Kernel 2.6.28
Linux Linux Kernel 2.6.28.1
Linux Linux Kernel 2.6.28.2
Linux Linux Kernel 2.6.28.3
Linux Linux Kernel 2.6.25
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »