Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
secure os vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2020-9817
A permissions issue existed. This issue was addressed with improved permission validation. This issue is fixed in macOS Catalina 10.15.5. A malicious application may be able to gain root privileges.
Apple Mac Os X
Apple Mac Os X 10.14.6
Apple Mac Os X 10.13.6
2.1
CVSSv2
CVE-2021-1258
A vulnerability in the upgrade component of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker with low privileges to read arbitrary files on the underlying operating system (OS) of an affected device. The vulnerability is due to insufficient fil...
Cisco Anyconnect Secure Mobility Client
Mcafee Agent Epolicy Orchestrator Extension
3.5
CVSSv2
CVE-2014-2291
Cross-site scripting (XSS) vulnerability in the Pulse Collaboration (Secure Meeting) user pages in Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS prior to 7.1r18, 7.3 prior to 7.3r10, 7.4 prior to 7.4r8, and 8.0 prior to 8.0r1 allows remote authenticated user...
Juniper Ive Os 7.4
Juniper Ive Os 7.3
Juniper Ive Os 7.1
Juniper Ive Os 8.0
2.1
CVSSv2
CVE-2013-6956
Cross-site scripting (XSS) vulnerability in the Secure Access Service Web rewriting feature in Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS prior to 7.1r17, 7.3 prior to 7.3r8, 7.4 prior to 7.4r6, and 8.0 prior to 8.0r1, when web rewrite is enabled, allows ...
Juniper Ive Os 7.3
Juniper Ive Os 7.4
Juniper Ive Os 8.0
Juniper Ive Os 7.1
3.3
CVSSv2
CVE-2013-5171
CoreGraphics in Apple Mac OS X prior to 10.9 allows local users to bypass secure input mode and log an arbitrary application's keystrokes via a hotkey event registration.
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.4
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.5
Apple Mac Os X
2.1
CVSSv2
CVE-2004-1087
Terminal for Apple Mac OS X 10.3.6 may indicate that "Secure Keyboard Entry" is enabled even when it is not, which could result in a false sense of security for the user.
Apple Quicktime Streaming Server 4.1.1
Apple Darwin Streaming Server 4.1.3
Apple Darwin Streaming Server 5.0.1
Apple Mac Os X 10.2.6
Apple Mac Os X 10.2.7
Apple Mac Os X 10.2.8
Apple Mac Os X 10.3.6
Apple Mac Os X Server 10.2
Apple Mac Os X Server 10.2.7
Apple Mac Os X Server 10.2.8
Apple Mac Os X 10.2.4
Apple Mac Os X 10.2.5
Apple Mac Os X 10.3.4
Apple Mac Os X 10.3.5
Apple Mac Os X Server 10.2.5
Apple Mac Os X Server 10.2.6
Apple Mac Os X Server 10.3.4
Apple Mac Os X Server 10.3.5
Apple Mac Os X Server 10.3.6
Apple Mac Os X 10.2.2
Apple Mac Os X 10.2.3
Apple Mac Os X 10.3.2
7.2
CVSSv2
CVE-2007-4693
The SecurityAgent component in Mac OS X 10.4 up to and including 10.4.10 allows attackers with physical access to bypass the authentication dialog of the screen saver and send keystrokes to a process, related to "handling of keyboard focus between secure text fields."
Apple Mac Os X 10.4.5
Apple Mac Os X 10.4.6
Apple Mac Os X Server 10.4.3
Apple Mac Os X Server 10.4.4
Apple Mac Os X 10.4.10
Apple Mac Os X 10.4.2
Apple Mac Os X 10.4.9
Apple Mac Os X Server 10.4.1
Apple Mac Os X Server 10.4.7
Apple Mac Os X Server 10.4.8
Apple Mac Os X 10.4.3
Apple Mac Os X 10.4.4
Apple Mac Os X Server 10.4.10
Apple Mac Os X Server 10.4.2
Apple Mac Os X Server 10.4.9
Apple Mac Os X 10.4.1
Apple Mac Os X 10.4.7
Apple Mac Os X 10.4.8
Apple Mac Os X Server 10.4.5
Apple Mac Os X Server 10.4.6
6.8
CVSSv2
CVE-2012-2496
A certain Java applet in the VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 3.x prior to 3.0 MR7 on 64-bit Linux platforms does not properly restrict use of Java components, which allows remote malicious users to execute arbitrar...
Cisco Anyconnect Secure Mobility Client 3.0
2.1
CVSSv2
CVE-2004-1081
The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other applications within the same window session.
Apple Quicktime Streaming Server 4.1.1
Apple Darwin Streaming Server 4.1.3
Apple Darwin Streaming Server 5.0.1
Apple Mac Os X 10.2.6
Apple Mac Os X 10.2.7
Apple Mac Os X 10.2.8
Apple Mac Os X 10.2.2
Apple Mac Os X 10.2.3
Apple Mac Os X 10.3.2
Apple Mac Os X 10.3.3
Apple Mac Os X Server 10.2.3
Apple Mac Os X Server 10.2.4
Apple Mac Os X Server 10.3.2
Apple Mac Os X Server 10.3.3
Apple Mac Os X 10.3.6
Apple Mac Os X Server 10.2
Apple Mac Os X Server 10.2.7
Apple Mac Os X Server 10.2.8
Apple Mac Os X 10.2.4
Apple Mac Os X 10.2.5
Apple Mac Os X 10.3.4
Apple Mac Os X 10.3.5
4.3
CVSSv2
CVE-2009-0144
CFNetwork in Apple Mac OS X 10.5 prior to 10.5.7 does not properly parse noncompliant Set-Cookie headers, which allows remote malicious users to obtain sensitive information by sniffing the network for "secure cookies" that are sent over unencrypted HTTP connections.
Apple Mac Os X 10.5.5
Apple Mac Os X 10.5.6
Apple Mac Os X Server 10.5.4
Apple Mac Os X 10.5.1
Apple Mac Os X 10.5.3
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.5.3
Apple Mac Os X 10.5
Apple Mac Os X 10.5.2
Apple Mac Os X 10.5.4
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »