Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bytes vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2018-18586
chmextract.c in the chmextract sample program, as distributed with libmspack prior to 0.8alpha, does not protect against absolute/relative pathnames in CHM files, leading to Directory Traversal. NOTE: the vendor disputes that this is a libmspack vulnerability, because chmextract....
Kyzer Libmspack 0.7
Kyzer Libmspack 0.6
Kyzer Libmspack 0.5
Kyzer Libmspack 0.4
Kyzer Libmspack 0.3
NA
CVE-2012-5419
Cisco Adaptive Security Appliance (ASA) software 8.7.1 and 8.7.1.1 for the Cisco ASA 1000V Cloud Firewall allows remote malicious users to cause a denial of service (device reload) via a malformed H.225 H.323 IPv4 packet, aka Bug IDs CSCuc42812 and CSCuc88741.
Cisco Adaptive Security Appliance Software 8.7.1
Cisco Adaptive Security Appliance Software 8.7.1.1
Cisco Asa 1000v Cloud Firewall -
9.8
CVSSv3
CVE-2017-3834
A vulnerability in Cisco Aironet 1830 Series and Cisco Aironet 1850 Series Access Points running Cisco Mobility Express Software could allow an unauthenticated, remote malicious user to take complete control of an affected device. The vulnerability is due to the existence of defa...
Cisco Aironet Access Point Firmware 8.2.100.0
Cisco Aironet Access Point Firmware 8.2.102.43
Cisco Aironet Access Point Firmware 8.2.102.139
Cisco Aironet Access Point Firmware 8.2.111.0
Cisco Aironet Access Point Firmware 8.2.121.12
Cisco Aironet Access Point Firmware 8.2.130.0
Cisco Aironet Access Point Firmware 90.57
Cisco Aironet Access Point Firmware 102.0
6.5
CVSSv3
CVE-2018-18584
In mspack/cab.h in libmspack prior to 0.8alpha and cabextract prior to 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write.
Libmspack Project Libmspack 0.5
Cabextract Project Cabextract
Libmspack Project Libmspack 0.4
Libmspack Project Libmspack 0.3
Libmspack Project Libmspack 0.6
Libmspack Project Libmspack 0.7
Libmspack Project Libmspack 0.7.1
Debian Debian Linux 8.0
Redhat Enterprise Linux 7.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Suse Linux Enterprise Server 11
Suse Linux Enterprise Server 12
Starwindsoftware Starwind Virtual San -
4.3
CVSSv3
CVE-2018-18585
chmd_read_headers in mspack/chmd.c in libmspack prior to 0.8alpha accepts a filename that has '\0' as its first or second character (such as the "/\0" name).
Kyzer Libmspack 0.7
Kyzer Libmspack 0.6
Kyzer Libmspack 0.5
Kyzer Libmspack 0.4
Kyzer Libmspack 0.3
Debian Debian Linux 8.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Suse Linux Enterprise Server 11
Suse Linux Enterprise Server 12
Starwindsoftware Starwind Virtual San -
6.8
CVSSv3
CVE-2018-0381
A vulnerability in the Cisco Aironet Series Access Points (APs) software could allow an authenticated, adjacent malicious user to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to a deadlock condition th...
Cisco Aironet Access Points 8.2\\(166.0\\)
Cisco Aironet Access Points 8.2\\(167.3\\)
Cisco Aironet Access Points 8.3\\(133.0\\)
Cisco Aironet Access Points 8.3\\(141.10\\)
Cisco Aironet Access Points 8.5\\(120.0\\)
Cisco Aironet Access Points 8.7\\(1.96\\)
Cisco Aironet Access Points 8.7\\(1.99\\)
Cisco Aironet Access Points 8.7\\(1.107\\)
8.1
CVSSv3
CVE-2021-23214
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encrypt...
Postgresql Postgresql
Postgresql Postgresql 14.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Redhat Software Collections 1.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux For Power Little Endian 8.0
Redhat Enterprise Linux For Ibm Z Systems 8.0
NA
CVE-2023-52501
In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not attempt to read past "commit" When iterating over the ring buffer while the ring buffer is active, the writer can corrupt the reader. There's barriers to help detect this and ha...
7.4
CVSSv3
CVE-2019-1543
ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value (IV) should be 96 bits (12 bytes). OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 byt...
Openssl Openssl
14 Github repositories
9.1
CVSSv3
CVE-2021-23127
An issue exists in Joomla! 3.2.0 up to and including 3.9.24. Usage of an insufficient length for the 2FA secret accoring to RFC 4226 of 10 bytes vs 20 bytes.
Joomla Joomla\\!
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »