Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
storage vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-29194
OneUptime is a solution for monitoring and managing online services. The vulnerability lies in the improper validation of client-side stored data within the web application. Specifically, the is_master_admin key, stored in the local storage of the browser, can be manipulated by a...
1 Github repository
NA
CVE-2024-27277
The private key for the IBM Storage Protect Plus Server 10.1.0 up to and including 10.1.16 certificate can be disclosed, undermining the security of the certificate. IBM X-Force ID: 285205.
4.3
CVSSv3
CVE-2023-47715
IBM Storage Protect Plus Server 10.1.0 up to and including 10.1.16 could allow an authenticated user with read-only permissions to add or delete entries from an existing HyperVisor configuration. IBM X-Force ID: 271538.
Ibm Storage Protect Plus
NA
CVE-2024-25655
Insecure storage of LDAP passwords in the authentication functionality of AVSystem Unified Management Platform (UMP) 23.07.0.16567~LTS allows members (with read access to the application database) to decrypt the LDAP passwords of users who successfully authenticate to web managem...
NA
CVE-2024-21652
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Prior to versions 2.8.13, 2.9.9, and 2.10.4, an attacker can exploit a chain of vulnerabilities, including a Denial of Service (DoS) flaw and in-memory data storage weakness, to effectively bypass the appli...
NA
CVE-2024-1410
Cloudflare quiche exists to be vulnerable to unbounded storage of information related to connection ID retirement, which could lead to excessive resource consumption. Each QUIC connection possesses a set of connection Identifiers (IDs); see RFC 9000 Section 5.1 https://datatracke...
6.5
CVSSv3
CVE-2024-26197
Windows Standards-Based Storage Management Service Denial of Service Vulnerability
1 Article
NA
CVE-2024-26618
In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Always exit sme_alloc() early with existing storage When sme_alloc() is called with existing storage and we are not flushing we will always allocate new storage, both leaking the existing storage and c...
NA
CVE-2023-49341
An issue exists in Newland Nquire 1000 Interactive Kiosk version NQ1000-II_G_V1.00.011, allows remote malicious users to obtain sensitive information via cleartext credential storage in backup.htm component.
NA
CVE-2024-28174
In JetBrains TeamCity prior to 2023.11.4 presigned URL generation requests in S3 Artifact Storage plugin were authorized improperly
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »