Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jeremy brown vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4071
A certain ActiveX control in Adobe Acrobat 9, when used with Microsoft Windows Vista and Internet Explorer 7, allows remote malicious users to cause a denial of service (browser crash) via an src property value with an invalid acroie:// URL.
Adobe Acrobat 9
1 EDB exploit
NA
CVE-2008-4128
Multiple cross-site request forgery (CSRF) vulnerabilities in the HTTP Administration component in Cisco IOS 12.4 on the 871 Integrated Services Router allow remote malicious users to execute arbitrary commands via (1) a certain "show privilege" command to the /level/15...
Cisco Ios 12.4
1 EDB exploit
7.2
CVSSv3
CVE-2021-23024
On version 8.0.x prior to 8.0.0.1, and all 6.x and 7.x versions, the BIG-IQ Configuration utility has an authenticated remote command execution vulnerability in undisclosed pages. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
F5 Big-iq Centralized Management
7.5
CVSSv3
CVE-2021-46389
IIPImage High Resolution Streaming Image Server prior to commit 882925b295a80ec992063deffc2a3b0d803c3195 is affected by an integer overflow in iipsrv.fcgi through malformed HTTP query parameters.
High Resolution Streaming Image Server Project High Resolution Streaming Image Server
8.8
CVSSv3
CVE-2020-25917
Stratodesk NoTouch Center prior to 4.4.68 is affected by: Incorrect Access Control. A low privileged user on the platform, for example a user with "helpdesk" privileges, can perform privileged operations including adding a new administrator to the platform via the easya...
Stratodesk Notouch Center
NA
CVE-2009-3272
Stack consumption vulnerability in WebKit.dll in WebKit in Apple Safari 3.2.3, and possibly other versions prior to 4.1.2, allows remote malicious users to cause a denial of service (application crash) via JavaScript code that calls eval on a long string composed of A/ sequences.
Apple Safari 4.0.3
Apple Safari 4.0
Apple Safari 3.2.3
Apple Safari 4.0.0b
Apple Safari 4.0.2
1 EDB exploit
9.8
CVSSv3
CVE-2022-22630
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.6.6, macOS Monterey 12.3, Security Update 2022-004 Catalina. A remote user may cause an unexpected app termination or arbitrary code execution
Apple Mac Os X 10.15.7
Apple Macos
9.8
CVSSv3
CVE-2021-27886
rakibtg Docker Dashboard prior to 2021-02-28 allows command injection in backend/utilities/terminal.js via shell metacharacters in the command parameter of an API request. NOTE: this is NOT a Docker, Inc. product.
Docker Dashboard Project Docker Dashboard
6.7
CVSSv3
CVE-2021-28113
A command injection vulnerability in the cookieDomain and relayDomain parameters of Okta Access Gateway prior to 2020.9.3 allows attackers (with admin access to the Okta Access Gateway UI) to execute OS commands as a privileged system account.
Okta Access Gateway
NA
CVE-2009-4186
Stack consumption vulnerability in Apple Safari 4.0.3 on Windows allows remote malicious users to cause a denial of service (application crash) via a long URI value (aka url) in the Cascading Style Sheets (CSS) background property.
Apple Safari 4.0.3
1 EDB exploit
2 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »