Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
harry vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2017-6360
QNAP QTS prior to 4.2.4 Build 20170313 allows malicious users to gain administrator privileges and obtain sensitive information via unspecified vectors.
Qnap Qts
1 EDB exploit
10
CVSSv2
CVE-2017-6361
QNAP QTS prior to 4.2.4 Build 20170313 allows malicious users to execute arbitrary commands via unspecified vectors.
Qnap Qts
1 EDB exploit
NA
CVE-2017-945013
aws-cfn-bootstrap versions prior to 1.4-22.14 suffer from a local code execution vulnerability.
9.3
CVSSv2
CVE-2013-3093
ASUS RT-N56U devices allow CSRF.
Asus Rt-n56u Firmware 3.0.0.4.374 979
Asus Rt-n10u Firmware 3.0.0.4.374 168
Asus Dsl-n55u Firmware 3.0.0.4.374 1397
Asus Rt-ac66u Firmware 3.0.0.4.374 2050
Asus Rt-n15u Firmware 3.0.0.4.374 16
Asus Rt-n53 Firmware 3.0.0.4.374 311
Asus Rt-n16 Firmware 3.0.0.4.374 979
7.2
CVSSv2
CVE-2017-9450
The Amazon Web Services (AWS) CloudFormation bootstrap tools package (aka aws-cfn-bootstrap) prior to 1.4-19.10 allows local users to execute arbitrary code with root privileges by leveraging the ability to create files in an unspecified directory.
Amazon Amazon Web Services Cloudformation Bootstrap
4.9
CVSSv2
CVE-2018-7268
MagniComp SysInfo prior to 10-H81, as shipped with BMC BladeLogic Automation and other products, contains an information exposure vulnerability in which a local unprivileged user is able to read any root (uid 0) owned file on the system, regardless of the file permissions. Confid...
Magnicomp Sysinfo
4.3
CVSSv2
CVE-2015-2807
Cross-site scripting (XSS) vulnerability in js/window.php in the Navis DocumentCloud plugin prior to 0.1.1 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the wpbase parameter.
Documentcloud Navis Documentcloud
1 Github repository
6.8
CVSSv2
CVE-2011-0522
The StripTags function in (1) the USF decoder (modules/codec/subtitles/subsdec.c) and (2) the Text decoder (modules/codec/subtitles/subsusf.c) in VideoLAN VLC Media Player 1.1 prior to 1.1.6-rc allows remote malicious users to execute arbitrary code via a subtitle with an opening...
Videolan Vlc Media Player 1.1.3
Videolan Vlc Media Player 1.1.4
Videolan Vlc Media Player 1.1.5
Videolan Vlc Media Player 1.1.2
Videolan Vlc Media Player 1.1.0
Videolan Vlc Media Player 1.1.6
Videolan Vlc Media Player 1.1.1
1 EDB exploit
NA
CVE-2017-636104
QNAP QTS suffers from multiple command injection vulnerabilities.
4
CVSSv2
CVE-2019-6110
In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.
Openbsd Openssh
Winscp Winscp
Netapp Element Software -
Netapp Storage Automation Store -
Netapp Ontap Select Deploy -
Siemens Scalance X204rna Firmware
Siemens Scalance X204rna Eec Firmware
2 EDB exploits
1 Github repository
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »