Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
andrew vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2015-4516
Mozilla Firefox prior to 41.0 allows remote malicious users to bypass certain ECMAScript 5 (aka ES5) API protection mechanisms and modify immutable properties, and consequently execute arbitrary JavaScript code with chrome privileges, via a crafted web page that does not use ES5 ...
Mozilla Firefox
357
VMScore
CVE-2013-1772
The log_prefix function in kernel/printk.c in the Linux kernel 3.x prior to 3.4.33 does not properly remove a prefix string from a syslog header, which allows local users to cause a denial of service (buffer overflow and system crash) by leveraging /dev/kmsg write access and trig...
Linux Linux Kernel 3.0
Linux Linux Kernel 3.0.35
Linux Linux Kernel 3.0.36
Linux Linux Kernel 3.0.41
Linux Linux Kernel 3.0.20
Linux Linux Kernel 3.0.21
Linux Linux Kernel 3.0.12
Linux Linux Kernel 3.0.13
Linux Linux Kernel 3.0.2
Linux Linux Kernel 3.0.1
Linux Linux Kernel 3.0.31
Linux Linux Kernel 3.0.6
Linux Linux Kernel 3.1
Linux Linux Kernel 3.1.4
Linux Linux Kernel 3.1.3
Linux Linux Kernel 3.0.42
Linux Linux Kernel 3.0.39
Linux Linux Kernel 3.0.18
Linux Linux Kernel 3.0.19
Linux Linux Kernel 3.0.10
Linux Linux Kernel 3.0.11
Linux Linux Kernel 3.0.34
553
VMScore
CVE-2013-0228
The xen_iret function in arch/x86/xen/xen-asm_32.S in the Linux kernel prior to 3.7.9 on 32-bit Xen paravirt_ops platforms does not properly handle an invalid value in the DS segment register, which allows guest OS users to gain guest OS privileges via a crafted application.
Linux Linux Kernel 3.2.21
Linux Linux Kernel 3.4.4
Linux Linux Kernel 3.0.25
Linux Linux Kernel 3.1.2
Linux Linux Kernel 3.4.11
Linux Linux Kernel 3.0
Linux Linux Kernel 3.2.19
Linux Linux Kernel 3.0.22
Linux Linux Kernel 3.2.23
Linux Linux Kernel 3.4.13
Linux Linux Kernel 3.0.5
Linux Linux Kernel 3.5.2
Linux Linux Kernel 3.2.18
Linux Linux Kernel 3.3
Linux Linux Kernel 3.0.38
Linux Linux Kernel 3.1
Linux Linux Kernel 3.2.5
Linux Linux Kernel 3.2.26
Linux Linux Kernel 3.4
Linux Linux Kernel 3.0.18
Linux Linux Kernel 3.0.6
Linux Linux Kernel 3.0.36
668
VMScore
CVE-2015-4501
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 41.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox
187
VMScore
CVE-2011-2527
The change_process_uid function in os-posix.c in Qemu 0.14.0 and previous versions does not properly drop group privileges when the -runas option is used, which allows local guest users to access restricted files on the host.
Qemu Qemu 0.12.4
Qemu Qemu 0.12.0
Qemu Qemu 0.11.0
Qemu Qemu 0.10.2
Qemu Qemu 0.9.1
Qemu Qemu 0.7.1
Qemu Qemu 0.7.0
Qemu Qemu 0.3.0
Qemu Qemu 0.2.0
Qemu Qemu 0.15.0
Qemu Qemu 0.1.5
Qemu Qemu 0.11.0-rc1
Qemu Qemu 0.13.0
Qemu Qemu 0.12.1
Qemu Qemu 0.10.5
Qemu Qemu 0.9.1-5
Qemu Qemu 0.9.0
Qemu Qemu 0.6.1
Qemu Qemu 0.6.0
Qemu Qemu
Qemu Qemu 0.12.3
Qemu Qemu 0.12.2
605
VMScore
CVE-2015-4510
Race condition in the WorkerPrivate::NotifyFeatures function in Mozilla Firefox prior to 41.0 allows remote malicious users to execute arbitrary code or cause a denial of service (use-after-free and application crash) by leveraging improper interaction between shared workers and ...
Mozilla Firefox
436
VMScore
CVE-2013-0231
The pciback_enable_msi function in the PCI backend driver (drivers/xen/pciback/conf_space_capability_msi.c) in Xen for the Linux kernel 2.6.18 and 3.8 allows guest OS users with PCI device access to cause a denial of service via a large number of kernel log messages. NOTE: some o...
Xen Xen 3.0.4
Xen Xen 3.0.2
Xen Xen 3.2.0
Xen Xen 3.1.3
Xen Xen 3.2.3
Xen Xen 3.0.3
Xen Xen 3.1.4
Linux Linux Kernel 2.6.18
Linux Linux Kernel 3.8
Xen Xen 3.2.1
Xen Xen 3.2.2
570
VMScore
CVE-2015-4512
gfx/2d/DataSurfaceHelpers.cpp in Mozilla Firefox prior to 41.0 on Linux improperly attempts to use the Cairo library with 32-bit color-depth surface creation followed by 16-bit color-depth surface display, which allows remote malicious users to obtain sensitive information from p...
Mozilla Firefox
188
VMScore
CVE-2013-2546
The report API in the crypto user configuration API in the Linux kernel up to and including 3.8.2 uses an incorrect C library function for copying strings, which allows local users to obtain sensitive information from kernel stack memory by leveraging the CAP_NET_ADMIN capability...
Linux Linux Kernel 3.2.21
Linux Linux Kernel 3.4.30
Linux Linux Kernel 3.4.4
Linux Linux Kernel 3.0.25
Linux Linux Kernel 3.1.2
Linux Linux Kernel 3.4.11
Linux Linux Kernel 3.0
Linux Linux Kernel 3.2.19
Linux Linux Kernel 3.0.22
Linux Linux Kernel 3.2.23
Linux Linux Kernel 3.4.26
Linux Linux Kernel 3.4.13
Linux Linux Kernel 3.6.7
Linux Linux Kernel 3.0.5
Linux Linux Kernel 3.5.2
Linux Linux Kernel 3.2.18
Linux Linux Kernel 3.0.68
Linux Linux Kernel 3.3
Linux Linux Kernel 3.0.38
Linux Linux Kernel 3.1
Linux Linux Kernel 3.0.63
Linux Linux Kernel 3.0.46
188
VMScore
CVE-2013-2547
The crypto_report_one function in crypto/crypto_user.c in the report API in the crypto user configuration API in the Linux kernel up to and including 3.8.2 does not initialize certain structure members, which allows local users to obtain sensitive information from kernel heap mem...
Linux Linux Kernel 3.2.21
Linux Linux Kernel 3.4.30
Linux Linux Kernel 3.4.4
Linux Linux Kernel 3.0.25
Linux Linux Kernel 3.1.2
Linux Linux Kernel 3.4.11
Linux Linux Kernel 3.0
Linux Linux Kernel 3.2.19
Linux Linux Kernel 3.0.22
Linux Linux Kernel 3.2.23
Linux Linux Kernel 3.4.26
Linux Linux Kernel 3.4.13
Linux Linux Kernel 3.6.7
Linux Linux Kernel 3.0.5
Linux Linux Kernel 3.5.2
Linux Linux Kernel 3.2.18
Linux Linux Kernel 3.0.68
Linux Linux Kernel 3.3
Linux Linux Kernel 3.0.38
Linux Linux Kernel 3.1
Linux Linux Kernel 3.0.63
Linux Linux Kernel 3.0.46
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »