Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
raise vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-34453
snappy-java is a fast compressor/decompressor for Java. Due to unchecked multiplications, an integer overflow may occur in versions before 1.1.10.1, causing a fatal error. The function `shuffle(int[] input)` in the file `BitShuffle.java` receives an array of integers and applies ...
Xerial Snappy-java
NA
CVE-2021-47282
In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: Fix out-of-bounds access with more than 4 slaves Commit 571e31fa60b3 ("spi: bcm2835: Cache CS register value for ->prepare_message()") limited the number of slaves to 3 at compile-time....
7.5
CVSSv3
CVE-2017-6657
Cisco Sourcefire Snort 3.0 before build 233 mishandles Ether Type Validation. Since valid ether type and IP protocol numbers do not overlap, Snort++ stores all protocol decoders in a single array. That makes it possible to craft packets that have IP protocol numbers in the ether ...
Cisco Snort++ -
NA
CVE-2005-1080
Directory traversal vulnerability in the Java Archive Tool (Jar) utility in J2SE SDK 1.4.2 and 1.5, and OpenJDK, allows remote malicious users to create or overwrite arbitrary files via a .. (dot dot) in filenames in a .jar file.
Sun Sdk 1.5
Sun Sdk 1.4.2
5.8
CVSSv3
CVE-2021-31810
An issue exists in Ruby up to and including 2.6.7, 2.7.x up to and including 2.7.3, and 3.x up to and including 3.0.1. A malicious FTP server can use the PASV response to trick Net::FTP into connecting back to a given IP address and port. This potentially makes curl extract infor...
Ruby-lang Ruby
Debian Debian Linux 9.0
Oracle Jd Edwards Enterpriseone Tools
9.1
CVSSv3
CVE-2019-14859
A flaw was found in all python-ecdsa versions prior to 0.13.3, where it did not correctly verify whether signatures used DER encoding. Without this verification, a malformed signature could be accepted, making the signature malleable. Without proper verification, an attacker coul...
Python-ecdsa Project Python-ecdsa
Redhat Ceph Storage 3.0
Redhat Ceph Storage 2.0
Redhat Openstack 10
Redhat Openstack 14
Redhat Openstack 13
Redhat Openstack 15
Redhat Virtualization 4.0
NA
CVE-2014-7824
D-Bus 1.3.0 up to and including 1.6.x prior to 1.6.26, 1.8.x prior to 1.8.10, and 1.9.x prior to 1.9.2 allows local users to cause a denial of service (prevention of new connections and connection drop) by queuing the maximum number of file descriptors. NOTE: this vulnerability e...
Freedesktop Dbus 1.6.4
Freedesktop Dbus 1.6.0
Freedesktop Dbus 1.6.24
Freedesktop Dbus 1.8.0
Freedesktop Dbus 1.9.0
Freedesktop Dbus 1.6.20
Freedesktop Dbus 1.6.10
Freedesktop Dbus 1.6.12
Freedesktop Dbus 1.6.16
Freedesktop Dbus 1.6.8
Freedesktop Dbus 1.6.14
Freedesktop Dbus 1.6.6
Freedesktop Dbus 1.6.22
Freedesktop Dbus 1.8.6
Freedesktop Dbus 1.6.18
Freedesktop Dbus 1.8.8
Freedesktop Dbus 1.8.4
Freedesktop Dbus 1.8.2
Freedesktop Dbus 1.6.2
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Mageia Project Mageia 4
NA
CVE-2015-0480
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote malicious users to affect integrity and availability via unknown vectors related to Tools.
Oracle Jdk 1.8.0
Oracle Jdk 1.5.0
Oracle Jdk 1.6.0
Oracle Jdk 1.7.0
Oracle Jre 1.5.0
Oracle Jre 1.6.0
Oracle Jre 1.7.0
Oracle Jre 1.8.0
NA
CVE-2014-3636
D-Bus 1.3.0 up to and including 1.6.x prior to 1.6.24 and 1.8.x prior to 1.8.8 allows local users to (1) cause a denial of service (prevention of new connections and connection drop) by queuing the maximum number of file descriptors or (2) cause a denial of service (disconnect) v...
D-bus Project D-bus
Freedesktop Dbus 1.8.0
Freedesktop Dbus 1.8.6
Freedesktop Dbus 1.8.4
Freedesktop Dbus 1.8.2
Opensuse Opensuse 12.3
NA
CVE-2005-1531
Firefox prior to 1.0.4 and Mozilla Suite prior to 1.7.8 does not properly implement certain security checks for script injection, which allows remote malicious users to execute script via "Wrapped" javascript: URLs, as demonstrated using (1) a javascript: URL in a view-...
Mozilla Firefox 0.8
Mozilla Mozilla 1.7
Mozilla Mozilla 1.5
Mozilla Firefox 1.0.2
Mozilla Firefox 0.9.1
Mozilla Mozilla 1.7.5
Mozilla Firefox 0.10.1
Mozilla Firefox 0.9
Mozilla Mozilla 1.6
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.7.7
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Mozilla
Mozilla Firefox 1.0.3
Mozilla Mozilla 1.7.6
Mozilla Mozilla 1.7.1
Mozilla Firefox 0.9.3
Mozilla Mozilla 1.5.1
Mozilla Firefox 0.9.2
Mozilla Mozilla 1.7.2
Mozilla Firefox 0.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »