Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
secure os vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2017-2342
MACsec feature on Juniper Networks Junos OS 15.1X49 before 15.1X49-D100 on SRX300 series does not report errors when a secure link can not be established. It falls back to an unencrypted link. This can happen when MACsec is configured on ports that are not capable of MACsec or wh...
Juniper Junos 15.1x49
8.1
CVSSv3
CVE-2006-5051
Signal handler race condition in OpenSSH prior to 4.4 allows remote malicious users to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free.
Openbsd Openssh
Debian Debian Linux 3.1
Apple Mac Os X
Apple Mac Os X Server
7.9
CVSSv3
CVE-2021-25470
An improper caller check logic of SMC call in TEEGRIS secure OS prior to SMR Oct-2021 Release 1 can be used to compromise TEE.
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.8
CVSSv3
CVE-2023-33032
Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.
Qualcomm 9205 Lte Modem Firmware -
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm C-v2x 9150 Firmware -
Qualcomm Csr8811 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Csrb31024 Firmware -
Qualcomm Fastconnect 6200 Firmware -
Qualcomm Fastconnect 6800 Firmware -
Qualcomm Fsm10056 Firmware -
Qualcomm Ipq6000 Firmware -
Qualcomm Ipq6005 Firmware -
Qualcomm Ipq6010 Firmware -
Qualcomm Ipq6018 Firmware -
Qualcomm Ipq6028 Firmware -
Qualcomm Ipq9008 Firmware -
Qualcomm Ipq9574 Firmware -
Qualcomm Qca4004 Firmware -
Qualcomm Qca4024 Firmware -
Qualcomm Qca6174a Firmware -
Qualcomm Qca6391 Firmware -
7.8
CVSSv3
CVE-2023-28545
Memory corruption in TZ Secure OS while loading an app ELF.
Qualcomm 315 5g Iot Modem Firmware -
Qualcomm 9205 Lte Modem Firmware -
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Fastconnect 6200 Firmware -
Qualcomm Fastconnect 6700 Firmware -
Qualcomm Fastconnect 6800 Firmware -
Qualcomm Fastconnect 6900 Firmware -
Qualcomm Fastconnect 7800 Firmware -
Qualcomm Flight Rb5 5g Platform Firmware -
Qualcomm Qam8255p Firmware -
Qualcomm Qam8295p Firmware -
Qualcomm Qam8650p Firmware -
Qualcomm Qam8775p Firmware -
Qualcomm Qamsrv1h Firmware -
Qualcomm Qca4004 Firmware -
Qualcomm Qca6174a Firmware -
Qualcomm Qca6310 Firmware -
Qualcomm Qca6335 Firmware -
7.8
CVSSv3
CVE-2021-26398
Insufficient input validation in SYS_KEY_DERIVE system call in a compromised user application or ABL may allow an malicious user to corrupt ASP (AMD Secure Processor) OS memory which may lead to potential arbitrary code execution.
Amd Epyc 7h12 Firmware
Amd Epyc 7f72 Firmware
Amd Epyc 7f52 Firmware
Amd Epyc 7f32 Firmware
Amd Epyc 7742 Firmware
Amd Epyc 7702p Firmware
Amd Epyc 7702 Firmware
Amd Epyc 7662 Firmware
Amd Epyc 7642 Firmware
Amd Epyc 7552 Firmware
Amd Epyc 7542 Firmware
Amd Epyc 7532 Firmware
Amd Epyc 7502p Firmware
Amd Epyc 7502 Firmware
Amd Epyc 7452 Firmware
Amd Epyc 7402 Firmware
Amd Epyc 7402p Firmware
Amd Epyc 7352 Firmware
Amd Epyc 7302p Firmware
Amd Epyc 7302 Firmware
Amd Epyc 7282 Firmware
Amd Epyc 7272 Firmware
7.8
CVSSv3
CVE-2022-1679
A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages. This flaw allows a local user to crash or potentially escalate their privileges on the sys...
Linux Linux Kernel
Debian Debian Linux 10.0
Netapp H410c Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
2 Github repositories
7.8
CVSSv3
CVE-2021-44149
An issue exists in Trusted Firmware OP-TEE Trusted OS up to and including 3.15.0. The OPTEE-OS CSU driver for NXP i.MX6UL SoC devices lacks security access configuration for wakeup-related registers, resulting in TrustZone bypass because the NonSecure World can perform arbitrary ...
Linaro Op-tee
7.8
CVSSv3
CVE-2020-25669
A vulnerability was found in the Linux Kernel where the function sunkbd_reinit having been scheduled by sunkbd_interrupt before sunkbd being freed. Though the dangling pointer is set to NULL in sunkbd_disconnect, there is still an alias in sunkbd_reinit causing Use After Free.
Linux Linux Kernel
Debian Debian Linux 9.0
Netapp Cloud Backup -
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire Baseboard Management Controller -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
7.8
CVSSv3
CVE-2021-22543
An issue exists in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allows users with the ability to start and control a VM to read/write random pages of me...
Linux Linux Kernel 2021-05-18
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Netapp H410c Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
Netapp Cloud Backup -
Netapp Solidfire Baseboard Management Controller Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »