Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
storm vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-12774
A number of stored XSS vulnerabilities have been identified in the web configuration feature in ENTTEC Datagate Mk2 70044_update_05032019-482 that could allow an unauthenticated threat actor to inject malicious code directly into the application. This affects, for example, the Pr...
Enttec Datagate Mk2 Firmware 70044
Enttec Storm 24 Firmware 70044
Enttec Pixelator Firmware 70044
Enttec E-streamer Mk2 Firmware 70044
7.8
CVSSv3
CVE-2019-12777
An issue exists on the ENTTEC Datagate MK2, Storm 24, Pixelator, and E-Streamer MK2 with firmware 70044_update_05032019-482. They replace secure and protected directory permissions (set as default by the underlying operating system) with highly insecure read, write, and execute d...
Enttec Datagate Mk2 Firmware 70044
Enttec Storm 24 Firmware 70044
Enttec Pixelator Firmware 70044
Enttec E-streamer Mk2 Firmware 70044
9.8
CVSSv3
CVE-2019-12776
An issue exists on the ENTTEC Datagate MK2, Storm 24, Pixelator, and E-Streamer MK2 with firmware 70044_update_05032019-482. They include a hard-coded SSH backdoor for remote SSH and SCP access as the root user. A command in the relocate and relocate_revB scripts copies the hardc...
Enttec Datagate Mk2 Firmware 70044
Enttec Storm 24 Firmware 70044
Enttec Pixelator Firmware 70044
Enttec E-streamer Mk2 Firmware 70044
8.8
CVSSv3
CVE-2019-12775
An issue exists on the ENTTEC Datagate MK2, Storm 24, Pixelator, and E-Streamer MK2 with firmware 70044_update_05032019-482. They allow high-privileged root access by www-data via sudo without requiring appropriate access control. (Furthermore, the user account that controls the ...
Enttec Datagate Mk2 Firmware 70044
Enttec Storm 24 Firmware 70044
Enttec Pixelator Firmware 70044
Enttec E-streamer Mk2 Firmware 70044
7.8
CVSSv3
CVE-2021-40162
A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40163
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processing component.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40164
A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40165
A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocated buffer while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40166
A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by malicious users to execute arbitrary code.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
NA
CVE-2004-1567
profile.php in Silent Storm Portal 2.1 and 2.2 allows remote malicious users to gain privileges by setting the mail parameter to 1, which is the value for an administrator.
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30065
CVE-2024-5843
CVE-2024-30080
code execution
CVE-2024-4577
CVE-2024-26169
wireless
remote code execution
CVE-2024-36103
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »