Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.2 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2008-3877
Stack-based buffer overflow in Acoustica Mixcraft 4.1 Build 96 and 4.2 Build 98 allows user-assisted malicious users to execute arbitrary code via a crafted .mx4 file. NOTE: it was later reported that version 3 is also affected.
Acoustica Mixcraft 4.2
Acoustica Mixcraft 3.0
Acoustica Mixcraft 4.1
2 EDB exploits
9.3
CVSSv2
CVE-2007-0018
Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control (NCTAudioFile2.dll), as used by multiple products, allows remote malicious users to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include (1) NCTsoft NC...
Altdo Mp3 Record And Edit Audio Master 1.2
Americanshareware Mp3 Wav Converter 3.1.8
Code-it Softare Wave Mp3 Editor 10.1
Dandans Digital Media Products Easy Audio Editor 7.4
Dandans Digital Media Products Full Audio Converter 4.2
Iaudiosoft.com Absolute Sound Recorder 3.4.5
Iaudiosoft.com Absolute Video To Audio Converter 2.7.9
J Hepple Products Fx Movie Joiner And Splitter 6.2.8
J Hepple Products Fx Movie Splitter 6.4.7
Mcfunsoft Audio Editor 6.3.3 Build 489
Mcfunsoft Audio Recorder For Free 6.1
Movavi Convertmovie 4.4
Cdburnerxp Cdburnerxp Pro 3.0.116
Cheetahburner Cheetah Cd Burner 3.56
Digital Borneo Audio Mixer And Editor 1.1.0
Easy Ringtone Maker Easy Ringtone Maker 2.0.5
J Hepple Products Fx Audio Editor 4.7.11
J Hepple Products Fx Audio Tools 7.3.4
Joshua Mediasoft Audio Convertor Plus 2.2
Joshua Mediasoft Video Converter Plus 3.01
Mcfunsoft Ipod Music Converter 5.1
Mcfunsoft Recording To Ipod Solution 5.1
3 EDB exploits
9
CVSSv2
CVE-2019-14287
In Sudo prior to 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !root configuration, and USER=...
Sudo Project Sudo
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Netapp Element Software Management Node -
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Server Aus 7.2
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server Tus 7.2
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Aus 6.6
59 Github repositories
1 Article
8.5
CVSSv2
CVE-2021-44832
Apache Log4j2 versions 2.0-beta7 up to and including 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the tar...
Apache Log4j 2.0
Apache Log4j
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Weblogic Server 12.2.1.4.0
Oracle Primavera Unifier 19.12
Oracle Weblogic Server 14.1.1.0.0
Oracle Primavera Unifier 20.12
Oracle Communications Interactive Session Recorder 6.3
Oracle Communications Interactive Session Recorder 6.4
Oracle Primavera Gateway
Oracle Retail Assortment Planning 16.0.3
Oracle Primavera Unifier 21.12
Oracle Primavera P6 Enterprise Project Portfolio Management 21.12.0.0
Oracle Primavera P6 Enterprise Project Portfolio Management
Oracle Primavera Gateway 21.12.0
Oracle Retail Fiscal Management 14.2
Oracle Siebel Ui Framework 21.12
Oracle Communications Diameter Signaling Router
Cisco Cloudcenter 4.10.0.16
Fedoraproject Fedora 34
Fedoraproject Fedora 35
34 Github repositories
4 Articles
8.5
CVSSv2
CVE-2004-2111
Stack-based buffer overflow in the site chmod command in Serv-U FTP Server prior to 4.2 allows remote malicious users to execute arbitrary code via a long filename.
Solarwinds Serv-u File Server 4.0.0.4
Solarwinds Serv-u File Server 3.0.0.17
Solarwinds Serv-u File Server 4.1.0.0
Solarwinds Serv-u File Server
Solarwinds Serv-u File Server 3.1.0.3
Solarwinds Serv-u File Server 3.0.0.16
Solarwinds Serv-u File Server 3.1.0.0
Solarwinds Serv-u File Server 3.1.0.1
5 EDB exploits
7.8
CVSSv2
CVE-2019-1597
Multiple vulnerabilities in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to cause an affected device to reload, resulting in a denial of service...
Cisco Firepower Extensible Operating System
Cisco Nx-os
7.8
CVSSv2
CVE-2019-1598
Multiple vulnerabilities in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to cause an affected device to reload, resulting in a denial of service...
Cisco Firepower Extensible Operating System
Cisco Nx-os
7.8
CVSSv2
CVE-2016-3766
MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-07-01 does not check whether memory allocation succeeds, which allows remote malicious users to cause a denial of service (device h...
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 4.1.2
Google Android 6.0
Google Android 5.1
Google Android 4.4.1
Google Android 4.3.1
Google Android 4.0.4
Google Android 4.0.2
Google Android 6.0.1
Google Android 5.1.0
Google Android 4.4
Google Android 4.3
Google Android 4.1
Google Android 4.0.3
Google Android 4.0.1
Google Android 5.0.1
Google Android 5.0
Google Android 4.4.3
Google Android 4.4.2
Google Android 4.0
7.8
CVSSv2
CVE-2016-3756
Tremolo/res012.c in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-07-01 does not validate the number of partitions, which allows remote malicious users to cause a denial of service (device hang or reboot) via a crafte...
Google Android 5.0
Google Android 4.4.2
Google Android 4.2.2
Google Android 4.2
Google Android 4.0
Google Android 6.0.1
Google Android 6.0
Google Android 5.1.0
Google Android 5.1
Google Android 4.1
Google Android 4.0.4
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.4.1
Google Android 4.4
Google Android 4.3.1
Google Android 4.3
Google Android 5.0.1
Google Android 4.4.3
Google Android 4.2.1
Google Android 4.1.2
Google Android 4.0.1
7.8
CVSSv2
CVE-2016-3754
mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-07-01 does not limit process-memory usage, which allows remote malicious users to cause a denial of service (device hang or reboot) via a crafted media file, aka internal ...
Google Android 5.1.0
Google Android 5.0.1
Google Android 4.4
Google Android 4.3
Google Android 4.0.3
Google Android 4.0.1
Google Android 5.0
Google Android 6.0.1
Google Android 4.2.1
Google Android 4.2
Google Android 4.1.2
Google Android 4.1
Google Android 4.4.3
Google Android 4.4.2
Google Android 4.4.1
Google Android 6.0
Google Android 5.1
Google Android 4.3.1
Google Android 4.2.2
Google Android 4.0.4
Google Android 4.0.2
Google Android 4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »