Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2022-26147
The Quectel RG502Q-EA modem prior to 2022-02-23 allow OS Command Injection.
Quectel Rg502q-ea Firmware
10
CVSSv2
CVE-2022-2068
In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection were found by code review. When the CVE-2022-1292 was fixed it was not dis...
Openssl Openssl
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Siemens Sinec Ins 1.0
Siemens Sinec Ins
Netapp Santricity Smi-s Provider -
Netapp Element Software -
Netapp Ontap Select Deploy Administration Utility -
Netapp Smi-s Provider -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapmanager -
Netapp Ontap Antivirus Connector -
Netapp Bootstrap Os -
Netapp H615c Firmware -
Netapp H610s Firmware -
Netapp H610c Firmware -
Netapp H410c Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
1 Github repository
1 Article
10
CVSSv2
CVE-2022-31800
An unauthenticated, remote attacker could upload malicious logic to devices based on ProConOS/ProConOS eCLR in order to gain full control over the device.
Phoenixcontact Axc 1050 Firmware
Phoenixcontact Axc 1050 Xc Firmware
Phoenixcontact Axc 3050 Firmware
Phoenixcontact Fc 350 Pci Eth Firmware
Phoenixcontact Ilc1x0 Firmware
Phoenixcontact Ilc1x1 Firmware
Phoenixcontact Ilc 1x1 Gsm/gprs Firmware
Phoenixcontact Ilc 3xx Firmware
Phoenixcontact Pc Worx Rt Basic Firmware
Phoenixcontact Pc Worx Srt Firmware
Phoenixcontact Rfc 430 Eth-ib Firmware
Phoenixcontact Rfc 450 Eth-ib Firmware
Phoenixcontact Rfc 460r Pn 3tx Firmware
Phoenixcontact Rfc 460r Pn 3tx-s Firmware
Phoenixcontact Rfc 470 Pn 3tx Firmware
Phoenixcontact Rfc 470s Pn 3tx Firmware
Phoenixcontact Rfc 480s Pn 4tx Firmware
1 Article
10
CVSSv2
CVE-2022-31801
An unauthenticated, remote attacker could upload malicious logic to the devices based on ProConOS/ProConOS eCLR in order to gain full control over the device.
Phoenixcontact Multiprog
Phoenixcontact Proconos
Phoenixcontact-software Proconos Eclr -
1 Article
10
CVSSv2
CVE-2022-31794
An issue exists on Fujitsu ETERNUS CentricStor CS8000 (Control Center) devices prior to 8.1A SP02 P04. The vulnerability resides in the requestTempFile function in hw_view.php. An attacker is able to influence the unitName POST parameter and inject special characters such as semi...
Fujitsu Eternus Cs8000 Firmware
Fujitsu Eternus Cs8000 Firmware 8.1
10
CVSSv2
CVE-2022-31795
An issue exists on Fujitsu ETERNUS CentricStor CS8000 (Control Center) devices prior to 8.1A SP02 P04. The vulnerability resides in the grel_finfo function in grel.php. An attacker is able to influence the username (user), password (pw), and file-name (file) parameters and inject...
Fujitsu Eternus Cs8000 Firmware
Fujitsu Eternus Cs8000 Firmware 8.1
10
CVSSv2
CVE-2022-30422
Proietti Tech srl Planet Time Enterprise 4.2.0.1,4.2.0.0,4.1.0.0,4.0.0.0,3.3.1.0,3.3.0.0 is vulnerable to Remote code execution via the Viewstate parameter.
Proietti Planet Time Enterprise 4.2.0.1
Proietti Planet Time Enterprise 4.2.0.0
Proietti Planet Time Enterprise 4.1.0.0
Proietti Planet Time Enterprise 4.0.0.0
Proietti Planet Time Enterprise 3.3.1.0
Proietti Planet Time Enterprise 3.3.0.0
10
CVSSv2
CVE-2022-30329
An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. An OS injection vulnerability exists within the web interface, allowing an attacker with valid credentials to execute arbitrary shell commands.
Trendnet Tew-831dr Firmware 1.0 601.130.1.1356
10
CVSSv2
CVE-2022-24562
In IOBit IOTransfer 4.3.1.1561, an unauthenticated attacker can send GET and POST requests to Airserv and gain arbitrary read/write access to the entire file-system (with admin privileges) on the victim's endpoint, which can result in data theft and remote code execution.
Iobit Iotransfer 4.3.1.1561
10
CVSSv2
CVE-2022-30136
Windows Network File System Remote Code Execution Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2019 -
2 Github repositories
2 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »