Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
analyzer vulnerabilities and exploits
(subscribe to this query)
8.5
CVSSv2
CVE-2019-17634
Eclipse Memory Analyzer version 1.9.1 and previous versions is subject to a cross site scripting (XSS) vulnerability when generating an HTML report from a malicious heap dump. The user must chose todownload, open the malicious heap dump and generate an HTML report for the problem...
Eclipse Memory Analyzer
8.3
CVSSv2
CVE-2010-2287
Buffer overflow in the SigComp Universal Decompressor Virtual Machine dissector in Wireshark 0.10.8 up to and including 1.0.13 and 1.2.0 up to and including 1.2.8 has unknown impact and remote attack vectors.
Wireshark Wireshark 1.0.2
Wireshark Wireshark 1.0.3
Wireshark Wireshark 1.0.10
Wireshark Wireshark 1.0.11
Wireshark Wireshark 0.99.2
Wireshark Wireshark 0.99.3
Wireshark Wireshark 0.99.8
Wireshark Wireshark 1.0.0
Wireshark Wireshark 1.0.1
Wireshark Wireshark 1.0.8
Wireshark Wireshark 1.0.9
Wireshark Wireshark 0.99.0
Wireshark Wireshark 0.99.1
Wireshark Wireshark 0.10.11
Wireshark Wireshark 0.10.12
Wireshark Wireshark 1.0.4
Wireshark Wireshark 1.0.5
Wireshark Wireshark 1.0.12
Wireshark Wireshark 1.0.13
Wireshark Wireshark 0.99.4
Wireshark Wireshark 0.99.5
Wireshark Wireshark 0.99.6
8.3
CVSSv2
CVE-2010-2284
Buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 up to and including 1.0.13 and 1.2.0 up to and including 1.2.8 has unknown impact and remote attack vectors.
Wireshark Wireshark 1.0.1
Wireshark Wireshark 1.0.2
Wireshark Wireshark 1.0.9
Wireshark Wireshark 1.0.10
Wireshark Wireshark 0.99.1
Wireshark Wireshark 0.99.2
Wireshark Wireshark 0.99.7
Wireshark Wireshark 0.99.8
Wireshark Wireshark 1.0.0
Wireshark Wireshark 1.0.7
Wireshark Wireshark 1.0.8
Wireshark Wireshark 0.10.13
Wireshark Wireshark 0.99.0
Wireshark Wireshark 1.0.3
Wireshark Wireshark 1.0.4
Wireshark Wireshark 1.0.11
Wireshark Wireshark 1.0.12
Wireshark Wireshark 0.99.3
Wireshark Wireshark 0.99.4
Wireshark Wireshark 0.99.6
Wireshark Wireshark 1.0.5
Wireshark Wireshark 1.0.6
7.8
CVSSv2
CVE-2021-28165
In Eclipse Jetty 7.2.2 to 9.4.38, 10.0.0.alpha0 to 10.0.1, and 11.0.0.alpha0 to 11.0.1, CPU usage can reach 100% upon receiving a large invalid TLS frame.
Eclipse Jetty
Oracle Communications Services Gatekeeper 7.0
Oracle Autovue For Agile Product Lifecycle Management 21.0.2
Oracle Siebel Core - Automation
Oracle Communications Element Manager 8.2.2
Oracle Communications Cloud Native Core Policy 1.14.0
Oracle Communications Session Report Manager
Oracle Communications Session Route Manager
Oracle Rest Data Services
Jenkins Jenkins
Netapp Santricity Cloud Connector -
Netapp E-series Santricity Os Controller
Netapp E-series Performance Analyzer
Netapp Snapcenter
Netapp E-series Santricity Storage
Netapp Santricity Web Services Proxy
Netapp Storage Replication Adapter For Clustered Data Ontap
Netapp Vasa Provider For Clustered Data Ontap
Netapp E-series Santricity Web Services
Netapp Ontap Tools
Netapp Cloud Manager
1 Github repository
7.8
CVSSv2
CVE-2021-22883
Node.js prior to 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to a denial of service attack when too many connection attempts with an 'unknownProtocol' are established. This leads to a leak of file descriptors. If a file descriptor limit is configured on the sys...
Nodejs Node.js
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Netapp E-series Performance Analyzer -
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Graalvm 20.3.1.2
Oracle Graalvm 21.0.0.2
Oracle Graalvm 19.3.5
Oracle Nosql Database
Oracle Mysql Cluster
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Jd Edwards Enterpriseone Tools
Siemens Sinec Infrastructure Network Services
7.8
CVSSv2
CVE-2018-18226
In Wireshark 2.6.0 to 2.6.3, the Steam IHS Discovery dissector could consume system memory. This was addressed in epan/dissectors/packet-steam-ihs-discovery.c by changing the memory-management approach.
Wireshark Wireshark
Debian Debian Linux 9.0
7.8
CVSSv2
CVE-2017-6470
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-iax2.c by constraining packet lateness.
Wireshark Wireshark
Debian Debian Linux 8.0
7.8
CVSSv2
CVE-2017-6014
In Wireshark 2.2.4 and previous versions, a crafted or malformed STANAG 4607 capture file will cause an infinite loop and memory exhaustion. If the packet size field in a packet header is null, the offset to read from will not advance, causing continuous attempts to read the same...
Wireshark Wireshark
Debian Debian Linux 8.0
7.8
CVSSv2
CVE-2009-3241
Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 up to and including 1.0.8 and 1.2.0 up to and including 1.2.1 allows remote malicious users to cause a denial of service (memory and CPU consumption) via malformed OPCUA Service CallRequest packets.
Wireshark Wireshark 0.99.7
Wireshark Wireshark 1.0
Wireshark Wireshark 1.2
Wireshark Wireshark 1.2.1
Wireshark Wireshark 1.0.4
Wireshark Wireshark 1.0.3
Wireshark Wireshark 1.0.6
Wireshark Wireshark 0.99.9
Wireshark Wireshark 1.2.0
Wireshark Wireshark 1.0.0
Wireshark Wireshark 1.0.1
Wireshark Wireshark 1.0.2
Wireshark Wireshark 1.0.5
Wireshark Wireshark 0.99.8
Wireshark Wireshark 1.0.7
Wireshark Wireshark 1.0.8
Wireshark Wireshark 0.99.6
Wireshark Wireshark 0.99.6a
1 EDB exploit
7.8
CVSSv2
CVE-2007-6118
The MEGACO dissector in Wireshark (formerly Ethereal) 0.9.14 to 0.99.6 allows remote malicious users to cause a denial of service (long loop and resource consumption) via unknown vectors.
Wireshark Wireshark 0.99.0
Wireshark Wireshark 0.99.1
Ethereal Group Ethereal 0.9.14
Wireshark Wireshark 0.99.2
Wireshark Wireshark 0.99.3
Ethereal Group Ethereal 0.99.0
Wireshark Wireshark 0.99
Wireshark Wireshark 0.99.6
Ethereal Group Ethereal 0.9.15
Ethereal Group Ethereal 0.9.16
Wireshark Wireshark 0.99.4
Wireshark Wireshark 0.99.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »