Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.9 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-3378
RPM 4.4.x up to and including 4.9.x, probably prior to 4.9.1.2, allows remote malicious users to cause a denial of service (memory corruption) and possibly execute arbitrary code via an rpm package with crafted headers and offsets that are not properly handled when a package is q...
Rpm Rpm 4.4.2.1
Rpm Rpm 4.8.0
Rpm Rpm 4.4.2
Rpm Rpm 4.6.0
Rpm Rpm 4.4.2.2
Rpm Rpm 4.7.2
Rpm Rpm 4.7.0
Rpm Rpm 4.4.2.3
Rpm Rpm 4.6.1
Rpm Rpm 4.7.1
Rpm Rpm
Rpm Rpm 4.4.2.
6.5
CVSSv3
CVE-2019-14907
All samba versions 4.9.x prior to 4.9.18, 4.10.x prior to 4.10.12 and 4.11.x prior to 4.11.5 have an issue where if it is set with "log level = 3" (or above) then the string obtained from the client, after a failed character conversion, is printed. Such strings can be p...
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Samba Samba
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Redhat Storage 3.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 19.10
Synology Skynas -
Synology Diskstation Manager 6.2
Synology Directory Server -
Synology Router Manager 1.2
Debian Debian Linux 9.0
NA
CVE-2014-3569
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected ...
Openssl Openssl 1.0.1j
9.1
CVSSv3
CVE-2019-10197
A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and access the conte...
Samba Samba 4.11.0
Samba Samba
Samba Samba 4.9.0
Samba Samba 4.10.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 19.04
NA
CVE-1999-0833
Buffer overflow in BIND 8.2 via NXT records.
Isc Bind 8.2
Isc Bind 8.2.1
Sun Sunos 5.7
Sun Solaris 7.0
6.5
CVSSv3
CVE-2019-10218
A flaw was found in the samba client, all samba versions before samba 4.11.2, 4.10.10 and 4.9.15, where a malicious server can supply a pathname to the client with separators. This could allow the client to access files and folders outside of the SMB network pathnames. An attacke...
Samba Samba
Fedoraproject Fedora 29
Fedoraproject Fedora 31
NA
CVE-2016-82000
1 - CVE-2016-82000 - Two fields in the 'Host Details' section of a scan did not properly sanitize input. By importing a malicious <!--//--><![CDATA[// ><!-- .nessus //--><!]]> file or scanning a compromised host re...
NA
CVE-2016-82001
1 - CVE-2016-82000 - Two fields in the 'Host Details' section of a scan did not properly sanitize input. By importing a malicious <!--//--><![CDATA[// ><!-- .nessus //--><!]]> file or scanning a compromised host re...
7.5
CVSSv3
CVE-2015-3193
The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 prior to 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote malicious users to obt...
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2d
Nodejs Node.js
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
1 Github repository
NA
CVE-2015-1794
The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 prior to 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message.
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2d
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »