Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tftp tftp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-0888
Directory traversal vulnerability in the TFTP server in Kiwi CatTools prior to 3.2.0 beta allows remote malicious users to read arbitrary files, and upload files to arbitrary locations, via ..// (dot dot) sequences in the pathname argument to an FTP (1) GET or (2) PUT command.
Kiwi Enterprises Kiwi Cattools
1 EDB exploit
NA
CVE-2013-7030
The TFTP service in Cisco Unified Communications Manager (aka CUCM or Unified CM) allows remote malicious users to obtain sensitive information from a phone via an RRQ operation, as demonstrated by discovering a cleartext UseUserCredential field in an SPDefault.cnf.xml file. NOTE...
Cisco Unified Communications Manager
1 EDB exploit
NA
CVE-2007-1645
Buffer overflow in FutureSoft TFTP Server 2000 on Microsoft Windows 2000 SP4 allows remote malicious users to execute arbitrary code via a long request on UDP port 69. NOTE: this issue might overlap CVE-2006-4781 or CVE-2005-1812.
Futuresoft Tftp Server 2000
1 EDB exploit
NA
CVE-2007-4226
Directory traversal vulnerability in the BlueCat Networks Proteus IPAM appliance 2.0.2.0 (Adonis DNS/DHCP appliance 5.0.2.8) allows remote authenticated administrators, with certain TFTP privileges, to create and overwrite arbitrary files via a .. (dot dot) in a pathname. NOTE: t...
Bluecat Networks Adonis 5.0.2.8
1 EDB exploit
7.5
CVSSv3
CVE-2019-1681
A vulnerability in the TFTP service of Cisco Network Convergence System 1000 Series software could allow an unauthenticated, remote malicious user to retrieve arbitrary files from the targeted device, possibly resulting in information disclosure. The vulnerability is due to impro...
Cisco Ios Xr
NA
CVE-2008-1403
Stack-based buffer overflow in the TFTP server in BootManage TFTPD 1.99 and previous versions in BootManage Administrator 7.1 and previous versions allows remote malicious users to execute arbitrary code via a request with a long filename.
Bootmanage Tftpd
Bootmanage Administrator
1 EDB exploit
NA
CVE-2008-6791
PumpKIN TFTP Server 2.7.2.0 allows remote malicious users to cause a denial of service via a write request with a long mode field.
Klever Pumpkin 2.7.2.0
1 EDB exploit
NA
CVE-2012-6664
Distinct TFTP 3.10 - Writable Directory Traversal Execution (Metasploit)
1 EDB exploit
NA
CVE-2013-6704
Cisco IOS XE does not properly manage memory for TFTP UDP flows, which allows remote malicious users to cause a denial of service (memory consumption) via TFTP (1) client or (2) server traffic, aka Bug IDs CSCuh09324 and CSCty42686.
Cisco Ios Xe -
6.5
CVSSv3
CVE-2022-21394
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is before 6.1.32. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox execu...
Oracle Vm Virtualbox
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »