Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2017-9811
The kluser is able to interact with the kav4fs-control binary in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). By abusing the quarantine read and write operations, it is possible to elevate the privileges to root.
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
1000
VMScore
CVE-2017-7494
Samba since version 3.5.0 and prior to 4.6.4, 4.5.10 and 4.4.14 is vulnerable to remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.
Samba Samba
Debian Debian Linux 8.0
2 EDB exploits
2 Nmap scripts
129 Github repositories
3 Articles
1000
VMScore
CVE-2017-8051
Tenable Appliance 3.5 - 4.4.0, and possibly prior versions, contains a flaw in the simpleupload.py script in the Web UI. Through the manipulation of the tns_appliance_session_user parameter, a remote attacker can inject arbitrary commands.
Tenable Appliance 3.10.0
Tenable Appliance 4.0.0
Tenable Appliance 4.4.0
Tenable Appliance 3.5.0
Tenable Appliance 4.1.0
Tenable Appliance 4.2.0
Tenable Appliance 4.3.0
Tenable Appliance 4.3.1
Tenable Appliance 3.5.1
Tenable Appliance 3.10.1
Tenable Appliance 3.4.0
1 EDB exploit
1000
VMScore
CVE-2016-7552
On the Trend Micro Threat Discovery Appliance 2.6.1062r1, directory traversal when processing a session_id cookie allows a remote, unauthenticated malicious user to delete arbitrary files as root. This can be used to bypass authentication or cause a DoS.
Trendmicro Threat Discovery Appliance 2.6.1062
2 Metasploit modules
1000
VMScore
CVE-2017-5638
The Jakarta Multipart parser in Apache Struts 2 2.3.x prior to 2.3.32 and 2.5.x prior to 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote malicious users to execute arbitrary commands via a crafted Content-Typ...
Apache Struts 2.3.5
Apache Struts 2.3.28
Apache Struts 2.3.20.2
Apache Struts 2.3.15
Apache Struts 2.3.25
Apache Struts 2.3.14
Apache Struts 2.3.13
Apache Struts 2.3.16
Apache Struts 2.3.24.2
Apache Struts 2.3.17
Apache Struts 2.3.24.1
Apache Struts 2.3.22
Apache Struts 2.3.9
Apache Struts 2.3.16.3
Apache Struts 2.3.23
Apache Struts 2.3.6
Apache Struts 2.3.24.3
Apache Struts 2.3.15.2
Apache Struts 2.3.29
Apache Struts 2.3.14.3
Apache Struts 2.3.19
Apache Struts 2.3.20.1
2 EDB exploits
2 Nmap scripts
146 Github repositories
15 Articles
1000
VMScore
CVE-2017-3823
An issue exists in the Cisco WebEx Extension prior to 1.0.7 on Google Chrome, the ActiveTouch General Plugin Container prior to 106 on Mozilla Firefox, the GpcContainer Class ActiveX control plugin prior to 10031.6.2017.0126 on Internet Explorer, and the Download Manager ActiveX ...
Cisco Activetouch General Plugin Container 105
Cisco Webex
Cisco Download Manager 2.1.0.9
Cisco Gpccontainer Class
Cisco Webex Meetings Server 2.0 Mr7
Cisco Webex Meetings Server 2.0 Mr8
Cisco Webex Meetings Server 2.5 Mr1
Cisco Webex Meetings Server 2.5 Mr2
Cisco Webex Meetings Server 2.5 Mr6
Cisco Webex Meetings Server 2.6 Mr3
Cisco Webex Meetings Server 2.7 Base
Cisco Webex Meetings Server 2.0 Base
Cisco Webex Meetings Server 2.0 Mr2
Cisco Webex Meetings Server 2.0 Mr9
Cisco Webex Meetings Server 2.5 Mr3
Cisco Webex Meetings Server 2.6 Base
Cisco Webex Meetings Server 2.6 Mr1
Cisco Webex Meetings Server 2.7 Mr1
Cisco Webex Meetings Server 2.0 Mr5
Cisco Webex Meetings Server 2.0 Mr6
Cisco Webex Meetings Server 2.5 Base
Cisco Webex Meetings Server 2.5 Mr5
2 Articles
1000
VMScore
CVE-2016-2207
The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x up to and including 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) prior to 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac;...
Symantec Mail Security For Microsoft Exchange 6.5.8
Symantec Mail Security For Microsoft Exchange
Symantec Norton Power Eraser
Symantec Protection Engine
Symantec Protection Engine 7.8.0
Symantec Endpoint Protection 12.1.6
Symantec Message Gateway
Symantec Norton 360
Symantec Norton Internet Security
Symantec Norton Security With Backup
Symantec Norton Security
Symantec Norton Antivirus
Symantec Ngc
Symantec Message Gateway For Service Providers 10.6
Symantec Message Gateway For Service Providers 10.5
Symantec Norton Bootable Removal Tool
Symantec Mail Security For Domino
Symantec Data Center Security Server 6.6
Symantec Data Center Security Server 6.5
Symantec Data Center Security Server 6.0
Symantec Norton Security
Symantec Advanced Threat Protection
1 EDB exploit
1000
VMScore
CVE-2016-0854
Unrestricted file upload vulnerability in the uploadImageCommon function in the UploadAjaxAction script in the WebAccess Dashboard Viewer in Advantech WebAccess prior to 8.1 allows remote malicious users to write to files of arbitrary types via unspecified vectors.
Advantech Webaccess
1 EDB exploit
1000
VMScore
CVE-2015-8396
Integer overflow in the ImageRegionReader::ReadIntoBuffer function in MediaStorageAndFileFormat/gdcmImageRegionReader.cxx in Grassroots DICOM (aka GDCM) prior to 2.6.2 allows malicious users to execute arbitrary code via crafted header dimensions in a DICOM image file, which trig...
Grassroots Dicom Project Grassroots Dicom
Grassroots Dicom Project Grassroots Dicom 2.6.1
1 EDB exploit
1000
VMScore
CVE-2015-7251
ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.k_PE have a hardcoded password of root for the root account, which allows remote malicious users to obtain administrative access via a TELNET session.
Zte Zxhn H108n R1a Firmware
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »