Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
physical vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2017-5554
An issue exists in ABOOT in OnePlus 3 and 3T OxygenOS prior to 4.0.2. The attacker can reboot the device into the fastboot mode, which could be done without any authentication. A physical attacker can press the "Volume Up" button during device boot, where an attacker wi...
Oneplus Oxygenos
828
VMScore
CVE-2014-0328
The thraneLINK protocol implementation on Cobham devices does not verify firmware signatures, which allows malicious users to execute arbitrary code by leveraging physical access or terminal access to send an SNMP request and a TFTP response.
Cobham Ailor 6110 Mini-c Gmdss -
Cobham Sailor 6006 Message Terminal -
Cobham Sailor 6222 Vhf -
Cobham Sailor 6300 Mf / Hf -
828
VMScore
CVE-2012-6422
The kernel in Samsung Galaxy S2, Galaxy Note 2, MEIZU MX, and possibly other Android devices, when running an Exynos 4210 or 4412 processor, uses weak permissions (0666) for /dev/exynos-mem, which allows malicious users to read or write arbitrary physical memory and gain privileg...
Samsung Galaxy Note 2 -
Meizu Mx -
Samsung Galaxy S2 -
803
VMScore
CVE-2020-12138
AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process. This could enable low-privileged users to achieve NT AUTHO...
Amd Atillk64 5.11.9.0
802
VMScore
CVE-2011-1581
The bond_select_queue function in drivers/net/bonding/bond_main.c in the Linux kernel prior to 2.6.39, when a network device with a large number of receive queues is installed but the default tx_queues setting is used, does not properly restrict queue indexes, which allows remote...
Linux Linux Kernel
801
VMScore
CVE-2016-8355
An issue exists in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. CADD-Solis Medication Safety Software grants an authenticated user elevated privileges on the SQL database, which would allow an authenticated user to modify drug libraries, a...
Smiths-medical Cadd-solis Medication Safety Software 3.1
Smiths-medical Cadd-solis Medication Safety Software 3.0
Smiths-medical Cadd-solis Medication Safety Software 1.0
Smiths-medical Cadd-solis Medication Safety Software 2.0
801
VMScore
CVE-2012-4661
Stack-based buffer overflow in the DCERPC inspection engine on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.3 prior to 8.3(2.34), 8.4 prior to 8.4(4.4), 8.5 prior to 8.5(1....
Cisco Adaptive Security Appliance Software 8.3(1)
Cisco Adaptive Security Appliance Software 8.3(2)
Cisco Adaptive Security Appliance Software 8.4
Cisco Adaptive Security Appliance Software 8.4(1)
Cisco Adaptive Security Appliance Software 8.4(1.11)
Cisco Adaptive Security Appliance Software 8.4(2)
Cisco Adaptive Security Appliance Software 8.4(2.11)
Cisco Adaptive Security Appliance Software 8.5
Cisco Adaptive Security Appliance Software 8.5(1)
Cisco Adaptive Security Appliance Software 8.5(1.4)
Cisco Adaptive Security Appliance Software 8.6
Cisco Adaptive Security Appliance Software 8.6(1)
Cisco 5500 Series Adaptive Security Appliance
Cisco 7600 Router
Cisco Catalyst 6500
Cisco Catalyst 6503-e -
Cisco Catalyst 6504-e -
Cisco Catalyst 6506-e -
Cisco Catalyst 6509-e -
Cisco Catalyst 6509-neb-a -
Cisco Catalyst 6509-v-e -
Cisco Catalyst 6513 -
790
VMScore
CVE-2015-7871
Crypto-NAK packets in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to bypass authentication.
Ntp Ntp 4.2.5
Ntp Ntp 4.2.8
Ntp Ntp
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
756
VMScore
CVE-2019-18423
An issue exists in Xen up to and including 4.12.x allowing ARM guest OS users to cause a denial of service via a XENMEM_add_to_physmap hypercall. p2m->max_mapped_gfn is used by the functions p2m_resolve_translation_fault() and p2m_get_entry() to sanity check guest physical fra...
Xen Xen
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Fedoraproject Fedora 31
755
VMScore
CVE-2013-2571
Iris 3.8 before build 1548, as used in Xpient point of sale (POS) systems, allows remote malicious users to execute arbitrary commands via a crafted request to TCP port 7510, as demonstrated by opening the cash drawer.
Hcomm Xpient Iris
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »