Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sean vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-34414
The error page for sites with invalid TLS certificates was missing the activation-delay Firefox uses to protect prompts and permission dialogs from attacks that exploit human response time delays. If a malicious page elicited user clicks in precise locations immediately before na...
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Thunderbird
9.3
CVSSv2
CVE-2007-1667
Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 prior to 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote malicious users to cause a denial of service (crash) or obtain sensitive information via crafted i...
X.org Libx11
Imagemagick Imagemagick
7.2
CVSSv2
CVE-2000-0250
The crypt function in QNX uses weak encryption, which allows local users to decrypt passwords.
Qnx Qnx 4.25a
1 EDB exploit
10
CVSSv2
CVE-2004-0989
Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote malicious users to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data...
Xmlsoft Libxml2 2.6.11
Xmlsoft Libxml2 2.6.13
Xmlsoft Libxml2 2.6.7
Xmlsoft Libxml2 2.6.14
Xmlstarlet Command Line Xml Toolkit 0.9.1
Xmlsoft Libxml2 2.6.8
Xmlsoft Libxml2 2.5.11
Xmlsoft Libxml 1.8.17
Xmlsoft Libxml2 2.6.12
Xmlsoft Libxml2 2.6.9
Xmlsoft Libxml2 2.6.6
Redhat Fedora Core Core 2.0
Trustix Secure Linux 2.0
Ubuntu Ubuntu Linux 4.1
Trustix Secure Linux 2.1
1 EDB exploit
10
CVSSv2
CVE-2018-0101
A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote malicious user to cause a reload of the affected system or to remotely execute code. The vulnerability is due to an a...
Cisco Adaptive Security Appliance Software
Cisco Firepower Threat Defense 6.0.0
Cisco Firepower Threat Defense 6.0.1
Cisco Firepower Threat Defense 6.2.0
Cisco Firepower Threat Defense 6.1.0
Cisco Firepower Threat Defense 6.2.2
Cisco Firepower Threat Defense 6.2.1
1 EDB exploit
6 Github repositories
NA
CVE-2023-49294
Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk prior to versions 18.20.1, 20.5.1, and 21.0.1, as well as certified-asterisk before 18.9-cert6, it is possible to read any arbitrary file even when the `live_dangerously` is not enabled. This al...
Sangoma Certified Asterisk 18.9
Sangoma Certified Asterisk 13.13.0
Sangoma Certified Asterisk 16.8.0
Digium Asterisk 21.0.0
Digium Asterisk
5
CVSSv2
CVE-2010-0214
The administrative interface on the PolyVision RoomWizard with firmware 3.2.3 places the Sync Connector Active Directory (AD) credentials in a web form that is accessed over HTTP on port 80, which allows remote malicious users to obtain sensitive information by reading the HTML s...
Polyvision Roomwizard Firmware 3.2.3
Polyvision Roomwizard
9.3
CVSSv2
CVE-2010-3749
The browser-plugin implementation in RealNetworks RealPlayer 11.0 up to and including 11.1 and RealPlayer SP 1.0 up to and including 1.1 allows remote malicious users to arguments to the RecordClip method, which allows remote malicious users to download an arbitrary program onto ...
Realnetworks Realplayer 11.0
Realnetworks Realplayer 11.0.4
Realnetworks Realplayer 11.0.2
Realnetworks Realplayer 11.0.3
Realnetworks Realplayer 11.0.5
Realnetworks Realplayer 11.1
Realnetworks Realplayer 11.0.1
Realnetworks Realplayer Sp 1.0.1
Realnetworks Realplayer Sp 1.1.3
Realnetworks Realplayer Sp 1.0.0
Realnetworks Realplayer Sp 1.0.2
Realnetworks Realplayer Sp 1.1
Realnetworks Realplayer Sp 1.1.2
Realnetworks Realplayer Sp 1.1.4
Realnetworks Realplayer Sp 1.1.1
Realnetworks Realplayer Sp 1.0.5
1 EDB exploit
9.3
CVSSv2
CVE-2017-0145
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote malicious users to execute arbitrary code v...
Microsoft Server Message Block 1.0
3 EDB exploits
26 Github repositories
3 Articles
9.3
CVSSv2
CVE-2017-0148
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote malicious users to execute arbitrary code v...
Microsoft Server Message Block 1.0
3 EDB exploits
1 Github repository
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »