Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
starwindsoftware san vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2020-24394
In the Linux kernel prior to 5.7.8, fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions on new filesystem objects when the filesystem lacks ACL support, aka CID-22cf8419f131. This occurs because the current umask is not considered.
Linux Linux Kernel
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Opensuse Leap 15.1
Oracle Sd-wan Edge 8.2
Starwindsoftware Starwind Virtual San V8
5.3
CVSSv3
CVE-2019-20807
In Vim prior to 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
Vim Vim
Debian Debian Linux 9.0
Opensuse Leap 15.1
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
Apple Mac Os X 10.13.6
Apple Mac Os X 10.14.6
Starwindsoftware Command Center 2
Starwindsoftware San \\& Nas 1.0
1 Article
6.5
CVSSv3
CVE-2018-18584
In mspack/cab.h in libmspack prior to 0.8alpha and cabextract prior to 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write.
Libmspack Project Libmspack 0.5
Cabextract Project Cabextract
Libmspack Project Libmspack 0.4
Libmspack Project Libmspack 0.3
Libmspack Project Libmspack 0.6
Libmspack Project Libmspack 0.7
Libmspack Project Libmspack 0.7.1
Debian Debian Linux 8.0
Redhat Enterprise Linux 7.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Suse Linux Enterprise Server 11
Suse Linux Enterprise Server 12
Starwindsoftware Starwind Virtual San -
4.3
CVSSv3
CVE-2018-18585
chmd_read_headers in mspack/chmd.c in libmspack prior to 0.8alpha accepts a filename that has '\0' as its first or second character (such as the "/\0" name).
Kyzer Libmspack 0.7
Kyzer Libmspack 0.6
Kyzer Libmspack 0.5
Kyzer Libmspack 0.4
Kyzer Libmspack 0.3
Debian Debian Linux 8.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Suse Linux Enterprise Server 11
Suse Linux Enterprise Server 12
Starwindsoftware Starwind Virtual San -
5.3
CVSSv3
CVE-2018-16737
tinc prior to 1.0.30 has a broken authentication protocol, without even a partial mitigation.
Tinc-vpn Tinc
Starwindsoftware Starwind Virtual San V8
3.7
CVSSv3
CVE-2018-16738
tinc 1.0.30 up to and including 1.0.34 has a broken authentication protocol, although there is a partial mitigation. This is fixed in 1.1.
Tinc-vpn Tinc
Debian Debian Linux 9.0
Starwindsoftware Starwind Virtual San V8
5.9
CVSSv3
CVE-2018-16758
Missing message authentication in the meta-protocol in Tinc VPN version 1.0.34 and previous versions allows a man-in-the-middle attack to disable the encryption of VPN packets.
Tinc-vpn Tinc
Debian Debian Linux 9.0
Starwindsoftware Starwind Virtual San V8
8.8
CVSSv3
CVE-2018-3839
An exploitable code execution vulnerability exists in the XCF image rendering functionality of Simple DirectMedia Layer SDL2_image-2.0.2. A specially crafted XCF image can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can display a specially c...
Libsdl Sdl Image 2.0.2
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Starwindsoftware Starwind Virtual San V8
5.5
CVSSv3
CVE-2018-3837
An exploitable information disclosure vulnerability exists in the PCX image rendering functionality of Simple DirectMedia Layer SDL2_image-2.0.2. A specially crafted PCX image can cause an out-of-bounds read on the heap, resulting in information disclosure . An attacker can displ...
Libsdl Sdl Image 2.0.2
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Starwindsoftware Starwind Virtual San V8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3