Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
anonymous vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-0497
Anonymous FTP is enabled.
NA
CVE-2007-6714
DBMail prior to 2.2.9, when using authldap with an LDAP server that supports anonymous login such as Active Directory, allows remote malicious users to bypass authentication via an empty password, which causes the LDAP bind to indicate success based on anonymous authentication.
Dbmail Dbmail 2.2.7
Dbmail Dbmail 2.2.6
Dbmail Dbmail 2.2.8
NA
CVE-2024-26642
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: disallow anonymous set with timeout flag Anonymous sets are never used with timeout from userspace, reject this. Exception to this rule is NFT_SET_EVAL to ensure legacy meters still work.
5.3
CVSSv3
CVE-2021-39882
In all versions of GitLab CE/EE, provided a user ID, anonymous users can use a few endpoints to retrieve information about any GitLab user.
Gitlab Gitlab
Gitlab Gitlab 4.3.0
9.8
CVSSv3
CVE-2018-10682
An issue exists in WildFly 10.1.2.Final. It is possible for an malicious user to access the administration panel on TCP port 9990 without any authentication using "anonymous" access that is automatically created. Once logged in, a misconfiguration present by default (au...
Wildfly Wildfly 10.1.2
4.3
CVSSv3
CVE-2013-5594
Mozilla Firefox prior to 25 allows modification of anonymous content of pluginProblem.xml binding
Mozilla Firefox
7.5
CVSSv3
CVE-2021-26117
The optional ActiveMQ LDAP login module can be configured to use anonymous access to the LDAP server. In this case, for Apache ActiveMQ Artemis prior to version 2.16.0 and Apache ActiveMQ prior to versions 5.16.1 and 5.15.14, the anonymous context is used to verify a valid users ...
Apache Activemq
Apache Activemq Artemis
Netapp Oncommand Workflow Automation -
Debian Debian Linux 9.0
Oracle Flexcube Private Banking 12.1.0
Oracle Flexcube Private Banking 12.0.0
Oracle Communications Session Report Manager
Oracle Communications Element Manager
Oracle Communications Session Route Manager
NA
CVE-2000-0386
FileMaker Pro 5 Web Companion allows remote malicious users to send anonymous or forged email.
Filemaker Filemaker 5.0
5.7
CVSSv3
CVE-2022-41964
BigBlueButton is an open source web conferencing system. This vulnerability only affects release candidates of BigBlueButton 2.4. The attacker can start a subscription for poll results before starting an anonymous poll, and use this subscription to see individual responses in the...
Bigbluebutton Bigbluebutton 2.4
7.5
CVSSv3
CVE-2020-17517
The S3 buckets and keys in a secure Apache Ozone Cluster must be inaccessible to anonymous access by default. The current security vulnerability allows access to keys and buckets through a curl command or an unauthenticated HTTP request. This enables unauthorized access to bucket...
Apache Ozone
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »