Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nova vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-0052
SAUTER Controls Nova 200–220 Series with firmware version 3.3-006 and prior and BACnetstac version 4.2.1 and prior allows the execution of commands without credentials. As Telnet and file transfer protocol (FTP) are the only protocols available for device management, an una...
Sauter-controls Nova 220 Eyk220f001 Firmware
Sauter-controls Nova 230 Eyk230f001 Firmware
Sauter-controls Nova 106 Eyk300f001 Firmware
Sauter-controls Modunet300 Ey-am300f001 Firmware
Sauter-controls Modunet300 Ey-am300f002 Firmware
187
VMScore
CVE-2019-15382
The Cubot Nova Android device with a build fingerprint of CUBOT/CUBOT_NOVA/CUBOT_NOVA:8.1.0/O11019/1527060122:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app (versionCode=27, versionName=8.1.0) that allows any app co-located on the ...
Cubot Nova Firmware -
383
VMScore
CVE-2020-17362
search.php in the Nova Lite theme prior to 1.3.9 for WordPress allows Reflected XSS.
Themeinprogress Nova Lite
356
VMScore
CVE-2017-17051
An issue exists in the default FilterScheduler in OpenStack Nova 16.0.3. By repeatedly rebuilding an instance with new images, an authenticated user may consume untracked resources on a hypervisor host leading to a denial of service, aka doubled resource allocations. This regress...
Openstack Nova 16.0.3
446
VMScore
CVE-2013-1664
The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute (Nova) Essex and Folsom; Cinder Folsom; Django; and possibly other products allow remote malicious users to cause a denial of service (resource consump...
Openstack Cinder Folsom -
Openstack Keystone Essex -
Openstack Grizzly -
Openstack Folsom -
Openstack Compute (nova) Essex -
Openstack Compute (nova) Folsom -
NA
CVE-2023-0053
SAUTER Controls Nova 200–220 Series with firmware version 3.3-006 and prior and BACnetstac version 4.2.1 and prior have only FTP and Telnet available for device management. Any sensitive information communicated through these protocols, such as credentials, is sent in clear...
Sauter-controls Nova 220 Eyk220f001 Firmware
Sauter-controls Nova 230 Eyk230f001 Firmware
Sauter-controls Nova 106 Eyk300f001 Firmware
Sauter-controls Modunet300 Ey-am300f001 Firmware
Sauter-controls Modunet300 Ey-am300f002 Firmware
Sauter-controls Bacnetstac
436
VMScore
CVE-2012-3447
virt/disk/api.py in OpenStack Compute (Nova) 2012.1.x prior to 2012.1.2 and Folsom before Folsom-3 allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image that uses a symlink that is only readable by root. NOTE: this vulnerability...
Openstack Nova 2012.1
Openstack Folsom
436
VMScore
CVE-2012-0030
Nova 2011.3 and Essex, when using the OpenStack API, allows remote authenticated users to bypass access restrictions for tenants of other users via an OSAPI request with a modified project_id URI parameter.
Openstack Essex
Openstack Nova 2011.3
481
VMScore
CVE-2014-7520
The Nova 92.1 FM (aka com.wNova921FM) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Nova921 Nova 92.1 Fm 1
445
VMScore
CVE-2015-3951
RLE Nova-Wind Turbine HMI devices store cleartext credentials, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Rle Nova-wind Turbine Hmi Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »