Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seven vulnerabilities and exploits
(subscribe to this query)
8.3
CVSSv2
CVE-2020-25682
A flaw was found in dnsmasq prior to 2.83. A buffer overflow vulnerability exists in the way dnsmasq extract names from DNS packets before validating them with DNSSEC data. An attacker on the network, who can create valid DNS replies, could use this flaw to cause an overflow with...
Thekelleys Dnsmasq
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 Article
7.1
CVSSv2
CVE-2020-25683
A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow exists in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. A remote attacker, who can create valid DNS replies, could use this flaw to cause an overflow in a heap-allocat...
Thekelleys Dnsmasq
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 Article
7.1
CVSSv2
CVE-2020-25687
A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow exists in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. This flaw allows a remote attacker, who can create valid DNS replies, to cause an overflow in a heap-allocated ...
Thekelleys Dnsmasq
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 Article
5
CVSSv2
CVE-2017-9502
In curl prior to 7.54.1 on Windows and DOS, libcurl's default protocol function, which is the logic that allows an application to set which protocol libcurl should attempt to use when given a URL without a scheme part, had a flaw that could lead to it overwriting a heap base...
Haxx Curl
1 Github repository
9
CVSSv2
CVE-2020-3454
A vulnerability in the Call Home feature of Cisco NX-OS Software could allow an authenticated, remote malicious user to inject arbitrary commands that could be executed with root privileges on the underlying operating system (OS). The vulnerability is due to insufficient input va...
Cisco Nx-os -
NA
CVE-2023-20187
A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers could allow an unauthenticated, remote malicious user to cause the affected device to reload, resulting in a denial of service ...
Cisco Ios Xe 3.7.1s
Cisco Ios Xe 3.7.2s
Cisco Ios Xe 3.7.2ts
Cisco Ios Xe 3.7.3s
Cisco Ios Xe 3.7.4s
Cisco Ios Xe 3.7.5s
Cisco Ios Xe 3.7.6s
Cisco Ios Xe 3.7.7s
Cisco Ios Xe 3.8.0s
Cisco Ios Xe 3.8.1s
Cisco Ios Xe 3.8.2s
Cisco Ios Xe 3.9.0s
Cisco Ios Xe 3.9.1s
Cisco Ios Xe 3.9.2s
Cisco Ios Xe 3.10.0s
Cisco Ios Xe 3.10.1s
Cisco Ios Xe 3.10.1xbs
Cisco Ios Xe 3.10.2s
Cisco Ios Xe 3.10.3s
Cisco Ios Xe 3.10.4s
Cisco Ios Xe 3.10.5s
Cisco Ios Xe 3.10.6s
5
CVSSv2
CVE-2020-3338
A vulnerability in the Protocol Independent Multicast (PIM) feature for IPv6 networks (PIM6) of Cisco NX-OS Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper erro...
Cisco Nx-os -
4
CVSSv2
CVE-2006-0617
Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5.0 Update 5 and previous versions allow remote malicious users to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "fifth, sixth, and seventh issues...
Sun Jdk
Sun Jre
7.8
CVSSv2
CVE-2020-3517
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated malicious user to cause process crashes, which could result in a denial of service (DoS) condition on an affected device. The attack vector is con...
Cisco Firepower Extensible Operating System
Cisco Nx-os 6.0\\(2\\)a3\\(1\\)
Cisco Nx-os 6.0\\(2\\)a3\\(2\\)
Cisco Nx-os 6.0\\(2\\)a3\\(4\\)
Cisco Nx-os 6.0\\(2\\)a4\\(1\\)
Cisco Nx-os 6.0\\(2\\)a4\\(2\\)
Cisco Nx-os 6.0\\(2\\)a4\\(3\\)
Cisco Nx-os 6.0\\(2\\)a4\\(4\\)
Cisco Nx-os 6.0\\(2\\)a4\\(5\\)
Cisco Nx-os 6.0\\(2\\)a4\\(6\\)
Cisco Nx-os 6.0\\(2\\)a6\\(1\\)
Cisco Nx-os 6.0\\(2\\)a6\\(1a\\)
Cisco Nx-os 6.0\\(2\\)a6\\(2\\)
Cisco Nx-os 6.0\\(2\\)a6\\(2a\\)
Cisco Nx-os 6.0\\(2\\)a6\\(3\\)
Cisco Nx-os 6.0\\(2\\)a6\\(3a\\)
Cisco Nx-os 6.0\\(2\\)a6\\(4\\)
Cisco Nx-os 6.0\\(2\\)a6\\(4a\\)
Cisco Nx-os 6.0\\(2\\)a6\\(5\\)
Cisco Nx-os 6.0\\(2\\)a6\\(5a\\)
Cisco Nx-os 6.0\\(2\\)a6\\(5b\\)
Cisco Nx-os 6.0\\(2\\)a6\\(6\\)
7.2
CVSSv2
CVE-2020-3394
A vulnerability in the Enable Secret feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, local malicious user to issue the enable command and get full administrative privileges. To exploit this vu...
Cisco Nx-os -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »