Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
id vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2004-2593
Buffer overflow in command-packet processing of Quake II server before R1Q2, as used in multiple products, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a packet with a long cmd_args buffer.
Id Software Quake Ii Server 3.21
Id Software Quake Ii Server 3.20
5
CVSSv2
CVE-2004-2597
Quake II server before R1Q2, as used in multiple products, allows remote malicious users to bypass IP-based access control rules via a userinfo string that already contains an "ip" key/value pair but is also long enough to cause a new key/value pair to be truncated, whi...
Id Software Quake Ii Server 3.20
Id Software Quake Ii Server 3.21
7.5
CVSSv2
CVE-2006-3400
Stack-based buffer overflow in the CG_ServerCommand function in Quake 3 Engine as used by Soldier of Fortune 2 (SOF2MP) GOLD 1.03 allows remote malicious users to cause a denial of service and possibly execute code by sending a long command from the server.
Id Software Quake 3 Engine Icculus 812
Raven Software Soldier Of Fortune 2 1.03
Id Software Quake 3 Engine 1.32b
Id Software Quake 3 Engine 1.32c
1 EDB exploit
7.5
CVSSv2
CVE-2021-45411
In Sourcecodetester Printable Staff ID Card Creator System 1.0 after compromising the database via SQLi, an attacker can log in and leverage an arbitrary file upload vulnerability to obtain remote code execution.
Printable Staff Id Card Creator System Project Printable Staff Id Card Creator System 1.0
5
CVSSv2
CVE-2004-2594
Absolute path traversal vulnerability in Quake II server before R1Q2 on Windows, as used in multiple products, allows remote malicious users to read arbitrary files via a "\/" in a pathname argument, as demonstrated by "download \/server.cfg".
Id Software Quake Ii Server Windows 3.20
Id Software Quake Ii Server Windows 3.21
5
CVSSv2
CVE-2004-2595
Absolute path traversal vulnerability in Quake II server before R1Q2 on Linux, as used in multiple products, allows remote malicious users to cause a denial of service (application crash) via a download command with a full pathname for a directory in the argument, which causes th...
Id Software Quake Ii Server Linux 3.20
Id Software Quake Ii Server Linux 3.21
NA
CVE-2023-6073
Attacker can perform a Denial of Service attack to crash the ICAS 3 IVI ECU in a Volkswagen ID.3 (and other vehicles of the VW Group with the same hardware) and spoof volume setting commands to irreversibly turn on audio volume to maximum via REST API calls.
Volkswagen Id.3 Firmware
7.5
CVSSv2
CVE-2019-6139
Forcepoint User ID (FUID) server versions up to 1.2 have a remote arbitrary file upload vulnerability on TCP port 5001. Successful exploitation of this vulnerability may lead to remote code execution. To fix this vulnerability, upgrade to FUID version 1.3 or higher. To prevent th...
Forcepoint User Id
5
CVSSv2
CVE-1999-1569
Quake 1 and NetQuake servers allow remote malicious users to cause a denial of service (resource exhaustion or forced disconnection) via a flood of spoofed UDP connection packets, which exceeds the server's player limit.
Id Software Quake 1.9
1 EDB exploit
5.4
CVSSv2
CVE-2014-7433
The Student ID (aka com.computas.studentbevis) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Hioa Student Id 1.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »