Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openssl openssl vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2020-26829
SAP NetWeaver AS JAVA (P2P Cluster Communication), versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows arbitrary connections from processes because of missing authentication check, that are outside the cluster and even outside the network segment dedicated for the internal clus...
Sap Netweaver Application Server Java 7.11
Sap Netweaver Application Server Java 7.20
Sap Netweaver Application Server Java 7.30
Sap Netweaver Application Server Java 7.31
Sap Netweaver Application Server Java 7.40
Sap Netweaver Application Server Java 7.50
1 Article
9
CVSSv2
CVE-2019-14287
In Sudo prior to 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !root configuration, and USER=...
Sudo Project Sudo
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Netapp Element Software Management Node -
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Server Aus 7.2
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server Tus 7.2
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Aus 6.6
60 Github repositories
1 Article
9
CVSSv2
CVE-2014-2169
Cisco TelePresence TC Software 4.x up to and including 6.x prior to 6.2.0 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to internal system scripts, aka Bug ID CSCue60211.
Cisco Telepresence Tc Software 5.1.1
Cisco Telepresence Tc Software 5.1.2
Cisco Telepresence Tc Software 5.1.3
Cisco Telepresence Tc Software 5.1.4
Cisco Telepresence Tc Software 6.0.0
Cisco Telepresence Tc Software 5.0.0
Cisco Telepresence Tc Software 5.0.2
Cisco Telepresence Tc Software 5.1.6
Cisco Telepresence Tc Software 4.0.1
Cisco Telepresence Tc Software 4.2.3
Cisco Telepresence Tc Software 6.0.1
Cisco Telepresence Tc Software 6.1.0
Cisco Telepresence Tc Software 6.1.1
Cisco Telepresence Tc Software 6.1.2
Cisco Telepresence Tc Software 4.0.4
Cisco Telepresence Tc Software 4.1.1
Cisco Telepresence Tc Software 4.1.2
Cisco Telepresence Tc Software 4.2.0
Cisco Telepresence Tc Software 4.2.1
Cisco Telepresence Tc Software 5.1.7
Cisco Telepresence Tc Software 5.0.1
Cisco Telepresence Tc Software 5.1.0
9
CVSSv2
CVE-2014-2170
Cisco TelePresence TC Software 4.x and 5.x prior to 5.1.7 and 6.x prior to 6.0.1 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to tshell (aka tcsh) scripts, aka Bug ID CSCue60202.
Cisco Telepresence Te Software 4.1.0
Cisco Telepresence Te Software 4.1.2
Cisco Telepresence Te Software 4.1.3
Cisco Telepresence Te Software 6.0
Cisco Telepresence Te Software 4.1.1
Cisco Telepresence Tc Software 5.1.2
Cisco Telepresence Tc Software 5.1.3
Cisco Telepresence Tc Software 5.1.4
Cisco Telepresence Tc Software 5.1.5
Cisco Telepresence Tc Software 5.1.6
Cisco Telepresence Tc Software 5.0.1
Cisco Telepresence Tc Software 5.1.0
Cisco Telepresence Tc Software 4.0.0
Cisco Telepresence Tc Software 4.0.4
Cisco Telepresence Tc Software 4.2.4
Cisco Telepresence Tc Software 6.0.0
Cisco Telepresence Tc Software 5.0.0
Cisco Telepresence Tc Software 4.1.2
Cisco Telepresence Tc Software 4.2.0
Cisco Telepresence Tc Software 4.2.1
Cisco Telepresence Tc Software 4.2.2
Cisco Telepresence Tc Software 5.0.2
9
CVSSv2
CVE-2013-1640
The (1) template and (2) inline_template functions in the master server in Puppet prior to 2.6.18, 2.7.x prior to 2.7.21, and 3.1.x prior to 3.1.1, and Puppet Enterprise prior to 1.2.7 and 2.7.x prior to 2.7.2 allows remote authenticated users to execute arbitrary code via a craf...
Puppet Puppet
Puppet Puppet 3.1.0
Puppet Puppet Enterprise
Puppet Puppet Enterprise 2.7.0
Puppet Puppet Enterprise 2.7.1
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.10
8.5
CVSSv2
CVE-2014-2126
Cisco Adaptive Security Appliance (ASA) Software 8.2 prior to 8.2(5.47), 8.4 prior to 8.4(7.5), 8.7 prior to 8.7(1.11), 9.0 prior to 9.0(3.10), and 9.1 prior to 9.1(3.4) allows remote authenticated users to gain privileges by leveraging level-0 ASDM access, aka Bug ID CSCuj33496.
Cisco Adaptive Security Appliance Software 8.2
Cisco Adaptive Security Appliance Software 8.4
Cisco Adaptive Security Appliance Software 9.0
Cisco Adaptive Security Appliance Software 8.7
Cisco Adaptive Security Appliance Software 9.1
2 Nmap scripts
1 Github repository
8.5
CVSSv2
CVE-2014-2127
Cisco Adaptive Security Appliance (ASA) Software 8.x prior to 8.2(5.48), 8.3 prior to 8.3(2.40), 8.4 prior to 8.4(7.9), 8.6 prior to 8.6(1.13), 9.0 prior to 9.0(4.1), and 9.1 prior to 9.1(4.3) does not properly process management-session information during privilege validation fo...
Cisco Adaptive Security Appliance Software 8.1
Cisco Adaptive Security Appliance Software 8.0
Cisco Adaptive Security Appliance Software 8.2
Cisco Adaptive Security Appliance Software 8.3\\(1\\)
Cisco Adaptive Security Appliance Software 8.4
Cisco Adaptive Security Appliance Software 8.6
Cisco Adaptive Security Appliance Software 9.0
Cisco Adaptive Security Appliance Software 9.1
2 Nmap scripts
7.8
CVSSv2
CVE-2021-34581
Missing Release of Resource after Effective Lifetime vulnerability in OpenSSL implementation of WAGO 750-831/xxx-xxx, 750-880/xxx-xxx, 750-881, 750-889 in versions FW4 up to FW15 allows an unauthenticated malicious user to cause DoS on the device.
Wago 750-880\\/040-000 Firmware
Wago 750-880\\/025-002 Firmware
Wago 750-880\\/025-001 Firmware
Wago 750-880\\/025-000 Firmware
Wago 750-831\\/000-002 Firmware
Wago 750-889 Firmware
Wago 750-881 Firmware
Wago 750-831 Firmware
Wago 750-880 Firmware
7.8
CVSSv2
CVE-2017-11142
In PHP prior to 5.6.31, 7.x prior to 7.0.17, and 7.1.x prior to 7.1.3, remote attackers could cause a CPU consumption denial of service attack by injecting long form variables, related to main/php_variables.c.
Php Php 7.0.0
Php Php 7.0.1
Php Php 7.0.8
Php Php 7.0.9
Php Php 7.1.0
Php Php 7.1.1
Php Php 7.0.4
Php Php 7.0.5
Php Php 7.0.12
Php Php 7.0.13
Php Php
Php Php 7.0.6
Php Php 7.0.7
Php Php 7.0.14
Php Php 7.0.15
Php Php 7.0.16
Php Php 7.0.2
Php Php 7.0.3
Php Php 7.0.10
Php Php 7.0.11
Php Php 7.1.2
7.8
CVSSv2
CVE-2016-4055
The duration function in the moment package prior to 2.11.2 for Node.js allows remote malicious users to cause a denial of service (CPU consumption) via a long string, aka a "regular expression Denial of Service (ReDoS)."
Momentjs Moment
Tenable Nessus
Oracle Primavera Unifier
2 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2024-20360
CVE-2021-47559
XXE
CVE-2024-5229
CVE-2021-47543
CVE-2021-47571
SSTI
CVE-2024-4978
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »