Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web services vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2018-16523
Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow division by zero in prvCheckOptions.
Amazon Amazon Web Services Freertos
Amazon Freertos
6.8
CVSSv2
CVE-2018-16525
Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow remote malicious users to execute arbitrary code or leak information because of a Buffer Overflow during parsin...
Amazon Amazon Web Services Freertos
Amazon Freertos
4.3
CVSSv2
CVE-2018-16603
An issue exists in Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds access to TCP source and destination port fields in xProcessReceivedTCPPacket can l...
Amazon Amazon Web Services Freertos
Amazon Freertos
6.5
CVSSv2
CVE-2020-2180
Jenkins AWS SAM Plugin 1.2.2 and previous versions does not configure its YAML parser to prevent the instantiation of arbitrary types, resulting in a remote code execution vulnerability.
Jenkins Amazon Web Services Serverless Application Model
4.3
CVSSv2
CVE-2018-16600
An issue exists in Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds memory access during parsing of ARP packets in eARPProcessPacket can be used for in...
Amazon Amazon Web Services Freertos
Amazon Freertos
2.1
CVSSv2
CVE-2002-1521
Web Server 4D (WS4D) 3.6 stores passwords in plaintext in the Ws4d.4DD file, which allows malicious users to gain privileges.
Mdg Computer Services Web Server 4d 3.6
7.5
CVSSv2
CVE-2002-0123
MDG Computer Services Web Server 4D WS4D/eCommerce 3.0 and previous versions, and possibly 3.5.3, allows remote malicious users to cause a denial of service and possibly execute arbitrary commands via a long HTTP request.
Mdg Computer Services Web Server 4d Ecommerce 3.5.3
5
CVSSv2
CVE-2002-0124
MDG Computer Services Web Server 4D/eCommerce 3.5.3 allows remote malicious users to exploit directory traversal vulnerability via a ../ (dot dot) containing URL-encoded slashes in the HTTP request.
Mdg Computer Services Web Server 4d Ecommerce 3.5.3
NA
CVE-2022-41828
In Amazon AWS Redshift JDBC Driver (aka amazon-redshift-jdbc-driver or redshift-jdbc42) prior to 2.1.0.8, the Object Factory does not check the class type when instantiating an object from a class name.
Amazon Amazon Web Services Redshift Java Database Connectivity Driver
1 Github repository
7.5
CVSSv2
CVE-2018-5488
NetApp SANtricity Web Services Proxy versions 1.10.x000.0002 up to and including 2.12.X000.0002 and SANtricity Storage Manager 11.30.0X00.0004 up to and including 11.42.0X00.0001 ship with the Java Management Extension Remote Method Invocation (JMX RMI) service bound to the netwo...
Netapp Santricity Storage Manager
Netapp Santricity Web Services Proxy
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »