Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openssl vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2020-26829
SAP NetWeaver AS JAVA (P2P Cluster Communication), versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows arbitrary connections from processes because of missing authentication check, that are outside the cluster and even outside the network segment dedicated for the internal clus...
Sap Netweaver Application Server Java 7.11
Sap Netweaver Application Server Java 7.20
Sap Netweaver Application Server Java 7.30
Sap Netweaver Application Server Java 7.31
Sap Netweaver Application Server Java 7.40
Sap Netweaver Application Server Java 7.50
1 Article
9
CVSSv2
CVE-2014-2169
Cisco TelePresence TC Software 4.x up to and including 6.x prior to 6.2.0 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to internal system scripts, aka Bug ID CSCue60211.
Cisco Telepresence Tc Software 5.1.1
Cisco Telepresence Tc Software 5.1.2
Cisco Telepresence Tc Software 5.1.3
Cisco Telepresence Tc Software 5.1.4
Cisco Telepresence Tc Software 6.0.0
Cisco Telepresence Tc Software 5.0.0
Cisco Telepresence Tc Software 5.0.2
Cisco Telepresence Tc Software 5.1.6
Cisco Telepresence Tc Software 4.0.1
Cisco Telepresence Tc Software 4.2.3
Cisco Telepresence Tc Software 6.0.1
Cisco Telepresence Tc Software 6.1.0
Cisco Telepresence Tc Software 6.1.1
Cisco Telepresence Tc Software 6.1.2
Cisco Telepresence Tc Software 4.0.4
Cisco Telepresence Tc Software 4.1.1
Cisco Telepresence Tc Software 4.1.2
Cisco Telepresence Tc Software 4.2.0
Cisco Telepresence Tc Software 4.2.1
Cisco Telepresence Tc Software 5.1.7
Cisco Telepresence Tc Software 5.0.1
Cisco Telepresence Tc Software 5.1.0
9
CVSSv2
CVE-2014-2170
Cisco TelePresence TC Software 4.x and 5.x prior to 5.1.7 and 6.x prior to 6.0.1 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to tshell (aka tcsh) scripts, aka Bug ID CSCue60202.
Cisco Telepresence Te Software 4.1.0
Cisco Telepresence Te Software 4.1.2
Cisco Telepresence Te Software 4.1.3
Cisco Telepresence Te Software 6.0
Cisco Telepresence Te Software 4.1.1
Cisco Telepresence Tc Software 5.1.2
Cisco Telepresence Tc Software 5.1.3
Cisco Telepresence Tc Software 5.1.4
Cisco Telepresence Tc Software 5.1.5
Cisco Telepresence Tc Software 5.1.6
Cisco Telepresence Tc Software 5.0.1
Cisco Telepresence Tc Software 5.1.0
Cisco Telepresence Tc Software 4.0.0
Cisco Telepresence Tc Software 4.0.4
Cisco Telepresence Tc Software 4.2.4
Cisco Telepresence Tc Software 6.0.0
Cisco Telepresence Tc Software 5.0.0
Cisco Telepresence Tc Software 4.1.2
Cisco Telepresence Tc Software 4.2.0
Cisco Telepresence Tc Software 4.2.1
Cisco Telepresence Tc Software 4.2.2
Cisco Telepresence Tc Software 5.0.2
9
CVSSv2
CVE-2013-1640
The (1) template and (2) inline_template functions in the master server in Puppet prior to 2.6.18, 2.7.x prior to 2.7.21, and 3.1.x prior to 3.1.1, and Puppet Enterprise prior to 1.2.7 and 2.7.x prior to 2.7.2 allows remote authenticated users to execute arbitrary code via a craf...
Puppet Puppet
Puppet Puppet 3.1.0
Puppet Puppet Enterprise
Puppet Puppet Enterprise 2.7.0
Puppet Puppet Enterprise 2.7.1
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.10
8.5
CVSSv2
CVE-2014-2126
Cisco Adaptive Security Appliance (ASA) Software 8.2 prior to 8.2(5.47), 8.4 prior to 8.4(7.5), 8.7 prior to 8.7(1.11), 9.0 prior to 9.0(3.10), and 9.1 prior to 9.1(3.4) allows remote authenticated users to gain privileges by leveraging level-0 ASDM access, aka Bug ID CSCuj33496.
Cisco Adaptive Security Appliance Software 8.2
Cisco Adaptive Security Appliance Software 8.4
Cisco Adaptive Security Appliance Software 9.0
Cisco Adaptive Security Appliance Software 8.7
Cisco Adaptive Security Appliance Software 9.1
2 Nmap scripts
1 Github repository
8.5
CVSSv2
CVE-2014-2127
Cisco Adaptive Security Appliance (ASA) Software 8.x prior to 8.2(5.48), 8.3 prior to 8.3(2.40), 8.4 prior to 8.4(7.9), 8.6 prior to 8.6(1.13), 9.0 prior to 9.0(4.1), and 9.1 prior to 9.1(4.3) does not properly process management-session information during privilege validation fo...
Cisco Adaptive Security Appliance Software 8.1
Cisco Adaptive Security Appliance Software 8.0
Cisco Adaptive Security Appliance Software 8.2
Cisco Adaptive Security Appliance Software 8.3\\(1\\)
Cisco Adaptive Security Appliance Software 8.4
Cisco Adaptive Security Appliance Software 8.6
Cisco Adaptive Security Appliance Software 9.0
Cisco Adaptive Security Appliance Software 9.1
2 Nmap scripts
7.8
CVSSv2
CVE-2021-34581
Missing Release of Resource after Effective Lifetime vulnerability in OpenSSL implementation of WAGO 750-831/xxx-xxx, 750-880/xxx-xxx, 750-881, 750-889 in versions FW4 up to FW15 allows an unauthenticated malicious user to cause DoS on the device.
Wago 750-880\\/040-000 Firmware
Wago 750-880\\/025-002 Firmware
Wago 750-880\\/025-001 Firmware
Wago 750-880\\/025-000 Firmware
Wago 750-831\\/000-002 Firmware
Wago 750-889 Firmware
Wago 750-881 Firmware
Wago 750-831 Firmware
Wago 750-880 Firmware
7.8
CVSSv2
CVE-2017-11142
In PHP prior to 5.6.31, 7.x prior to 7.0.17, and 7.1.x prior to 7.1.3, remote attackers could cause a CPU consumption denial of service attack by injecting long form variables, related to main/php_variables.c.
Php Php 7.0.0
Php Php 7.0.1
Php Php 7.0.8
Php Php 7.0.9
Php Php 7.1.0
Php Php 7.1.1
Php Php 7.0.4
Php Php 7.0.5
Php Php 7.0.12
Php Php 7.0.13
Php Php
Php Php 7.0.6
Php Php 7.0.7
Php Php 7.0.14
Php Php 7.0.15
Php Php 7.0.16
Php Php 7.0.2
Php Php 7.0.3
Php Php 7.0.10
Php Php 7.0.11
Php Php 7.1.2
7.8
CVSSv2
CVE-2016-4055
The duration function in the moment package prior to 2.11.2 for Node.js allows remote malicious users to cause a denial of service (CPU consumption) via a long string, aka a "regular expression Denial of Service (ReDoS)."
Momentjs Moment
Tenable Nessus
Oracle Primavera Unifier
2 Github repositories
7.8
CVSSv2
CVE-2016-5300
The XML parser in Expat does not use sufficient entropy for hash initialization, which allows context-dependent malicious users to cause a denial of service (CPU consumption) via crafted identifiers in an XML document. NOTE: this vulnerability exists because of an incomplete fix ...
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Libexpat Project Libexpat
Google Android 5.0.2
Google Android 6.0.1
Google Android 6.0
Google Android 4.4.4
Google Android 5.1.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »