Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sam vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-36934
<p>An elevation of privilege vulnerability exists because of overly permissive Access Control Lists (ACLs) on multiple system files, including the Security Accounts Manager (SAM) database. An attacker who successfully exploited this vulnerability could run arbitrary code wi...
Microsoft Windows 10 1809
Microsoft Windows 10 1909
Microsoft Windows 10 2004
Microsoft Windows 10 20h2
Microsoft Windows 10 21h1
38 Github repositories
3 Articles
NA
CVE-2004-1207
The Serious engine, as used in (1) Alpha Black Zero Intrepid Protocol 1.04 and previous versions, (2) Nitro family, and (3) Serious Sam Second Encounter 1.07 allows remote malicious users to cause a denial of service (server crash) via a large number of UDP join requests that exc...
Serioussam Seriousengine
1 EDB exploit
7.5
CVSSv3
CVE-2019-11029
Mirasys VMS before V7.6.1 and 8.x before V8.3.2 mishandles the Download() method of AutoUpdateService in SMServer.exe, leading to Directory Traversal. An attacker could use ..\ with this method to iterate over lists of interesting system files and download them without previous a...
Mirasys Mirasys Vms
9.8
CVSSv3
CVE-2019-8385
An issue exists in Thomson Reuters Desktop Extensions 1.9.0.358. An unauthenticated directory traversal and local file inclusion vulnerability in the ThomsonReuters.Desktop.Service.exe and ThomsonReuters.Desktop.exe allows a remote malicious user to list or enumerate sensitive co...
Thomsonreuters Concourse Matter Room
Thomsonreuters Firm Central Desktop
1 EDB exploit
1 Github repository
NA
CVE-2015-2825
Unrestricted file upload vulnerability in sam-ajax-admin.php in the Simple Ads Manager plugin prior to 2.5.96 for WordPress allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file...
Simple Ads Manager Project Simple Ads Manager
1 EDB exploit
7.3
CVSSv3
CVE-2021-31844
A buffer overflow vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows before 11.6.200 allows a local malicious user to execute arbitrary code with elevated privileges through placing carefully constructed Ami Pro (.sam) files onto the local system and triggeri...
Mcafee Data Loss Prevention Endpoint
7.3
CVSSv3
CVE-2021-31845
A buffer overflow vulnerability in McAfee Data Loss Prevention (DLP) Discover before 11.6.100 allows an attacker in the same network as the DLP Discover to execute arbitrary code through placing carefully constructed Ami Pro (.sam) files onto a machine and having DLP Discover sca...
Mcafee Data Loss Prevention Discover
NA
CVE-2012-3000
Multiple SQL injection vulnerabilities in sam/admin/reports/php/saveSettings.php in the (1) APM WebGUI in F5 BIG-IP LTM, GTM, ASM, Link Controller, PSM, APM, Edge Gateway, and Analytics and (2) AVR WebGUI in WebAccelerator and WOM 11.2.x prior to 11.2.0-HF3 and 11.2.x prior to 11...
F5 Big-ip Webaccelerator 11.2.0
F5 Big-ip Webaccelerator 11.2.1
F5 Big-ip Webaccelerator 11.0.0
F5 Big-ip Webaccelerator 11.1.0
F5 Big-ip Global Traffic Manager 11.1.0
F5 Big-ip Global Traffic Manager 11.0.0
F5 Big-ip Global Traffic Manager 11.2.1
F5 Big-ip Global Traffic Manager 11.2.0
F5 Big-ip Local Traffic Manager 11.1.0
F5 Big-ip Local Traffic Manager 11.0.0
F5 Big-ip Local Traffic Manager 11.2.0
F5 Big-ip Local Traffic Manager 11.2.1
F5 Big-ip Protocol Security Module 11.0.0
F5 Big-ip Protocol Security Module 11.1.0
F5 Big-ip Protocol Security Module 11.2.0
F5 Big-ip Protocol Security Module 11.2.1
F5 Big-ip Wan Optimization Manager 11.0.0
F5 Big-ip Wan Optimization Manager 11.2.0
F5 Big-ip Wan Optimization Manager 11.2.1
F5 Big-ip Wan Optimization Manager 11.1.0
F5 Big-ip Link Controller 11.2.1
F5 Big-ip Link Controller 11.1.0
NA
CVE-2007-5909
Multiple stack-based buffer overflows in Autonomy (formerly Verity) KeyView Viewer, Filter, and Export SDK prior to 9.2.0.12, as used by ActivePDF DocConverter, IBM Lotus Notes prior to 7.0.3, Symantec Mail Security, and other products, allow remote malicious users to execute arb...
Symantec Mail Security 5.0.1
Symantec Mail Security 5.0
Activepdf Docconverter 3.8.2 .5
Autonomy Keyview Filter Sdk
Autonomy Keyview Viewer Sdk
Symantec Mail Security 7.5
Autonomy Keyview Export Sdk
Symantec Mail Security 5.0.0.24
Symantec Mail Security 5.0.0
Ibm Lotus Notes
NA
CVE-2011-2738
Multiple unspecified vulnerabilities in Cisco Unified Service Monitor prior to 8.6, as used in Unified Operations Manager prior to 8.6 and CiscoWorks LAN Management Solution 3.x and 4.x prior to 4.1; and multiple EMC Ionix products including Application Connectivity Monitor (Ioni...
Cisco Unified Service Monitor 8.0
Cisco Unified Service Monitor
Cisco Unified Service Monitor 2.0.1
Cisco Unified Service Monitor 2.2
Cisco Unified Service Monitor 2.3
Cisco Unified Service Monitor 2.0
Cisco Unified Service Monitor 2.1
Cisco Unified Service Monitor 1.1
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 2.0.3
Cisco Ciscoworks Lan Management Solution 3.0
Cisco Ciscoworks Lan Management Solution 3.2
Cisco Unified Operations Manager 1.1
Cisco Unified Operations Manager 2.3
Cisco Unified Operations Manager 8.0
Cisco Ciscoworks Lan Management Solution 4.0
Cisco Ciscoworks Lan Management Solution 4.0.1
Cisco Unified Operations Manager 2.0
Cisco Unified Operations Manager 2.0.1
Cisco Unified Operations Manager
Cisco Unified Operations Manager 1.0
Cisco Unified Operations Manager 2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »