Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
daniel a. vulnerabilities and exploits
(subscribe to this query)
725
VMScore
CVE-2019-1999
In binder_alloc_free_page of binder_alloc.c, there is a possible double free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. ...
Google Android -
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 19.04
1 EDB exploit
1 Article
188
VMScore
CVE-2014-5270
Libgcrypt prior to 1.5.4, as used in GnuPG and other products, does not properly perform ciphertext normalization and ciphertext randomization, which makes it easier for physically proximate malicious users to conduct key-extraction attacks by leveraging the ability to collect vo...
Gnupg Libgcrypt
Gnupg Libgcrypt 1.4.6
Gnupg Libgcrypt 1.4.4
Gnupg Libgcrypt 1.5.0
Gnupg Libgcrypt 1.5.1
Gnupg Libgcrypt 1.4.0
Gnupg Libgcrypt 1.5.2
Gnupg Libgcrypt 1.4.3
Gnupg Libgcrypt 1.4.5
Debian Debian Linux 7.0
383
VMScore
CVE-2012-1956
Mozilla Firefox prior to 15.0, Thunderbird prior to 15.0, and SeaMonkey prior to 2.12 do not prevent use of the Object.defineProperty method to shadow the location object (aka window.location), which makes it easier for remote malicious users to conduct cross-site scripting (XSS)...
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 2.0.0.12
Mozilla Firefox 1.5
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
Mozilla Firefox 8.0
Mozilla Firefox 3.0.9
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.8
Mozilla Firefox 3.6.3
Mozilla Firefox 2.0.0.2
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.3
Mozilla Firefox 3.5.6
Mozilla Firefox 3.0.8
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.4.1
Mozilla Firefox 1.5.4
Mozilla Firefox 10.0
890
VMScore
CVE-2012-3957
Heap-based buffer overflow in the nsBlockFrame::MarkLineDirty function in Mozilla Firefox prior to 15.0, Firefox ESR 10.x prior to 10.0.7, Thunderbird prior to 15.0, Thunderbird ESR 10.x prior to 10.0.7, and SeaMonkey prior to 2.12 allows remote malicious users to execute arbitra...
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Firefox Esr
Mozilla Thunderbird Esr
Suse Linux Enterprise Desktop 11
Opensuse Opensuse 12.2
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Desktop 10
Suse Linux Enterprise Server 10
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Server Eus 6.3
Redhat Enterprise Linux Eus 6.3
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
890
VMScore
CVE-2012-3963
Use-after-free vulnerability in the js::gc::MapAllocToTraceKind function in Mozilla Firefox prior to 15.0, Firefox ESR 10.x prior to 10.0.7, Thunderbird prior to 15.0, Thunderbird ESR 10.x prior to 10.0.7, and SeaMonkey prior to 2.12 allows remote malicious users to execute arbit...
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Firefox Esr
Mozilla Thunderbird Esr
Suse Linux Enterprise Desktop 11
Opensuse Opensuse 12.2
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Desktop 10
Suse Linux Enterprise Server 10
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Server Eus 6.3
Redhat Enterprise Linux Eus 6.3
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
383
VMScore
CVE-2012-3975
The DOMParser component in Mozilla Firefox prior to 15.0, Thunderbird prior to 15.0, and SeaMonkey prior to 2.12 loads subresources during parsing of text/html data within an extension, which allows remote malicious users to obtain sensitive information by providing crafted data ...
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 2.0.0.12
Mozilla Firefox 1.5
Mozilla Firefox 3.0.17
Mozilla Firefox 3.5.3
Mozilla Firefox 3.0.7
Mozilla Firefox 1.5.2
Mozilla Firefox 8.0
Mozilla Firefox 3.0.9
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.8
Mozilla Firefox 3.6.3
Mozilla Firefox 2.0.0.2
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.3
Mozilla Firefox 3.5.6
Mozilla Firefox 3.0.8
Mozilla Firefox 1.5.0.11
Mozilla Firefox 1.4.1
Mozilla Firefox 1.5.4
Mozilla Firefox 10.0
570
VMScore
CVE-2019-17134
Amphora Images in OpenStack Octavia >=0.10.0 <2.1.2, >=3.0.0 <3.2.0, >=4.0.0 <4.1.0 allows anyone with access to the management network to bypass client-certificate based authentication and retrieve information or issue configuration commands via simple HTTP req...
Opendev Octavia
Canonical Ubuntu Linux 19.04
668
VMScore
CVE-2015-2059
The stringprep_utf8_to_ucs4 function in libin prior to 1.31, as used in jabberd2, allows context-dependent malicious users to read system memory and possibly have other unspecified impact via invalid UTF-8 characters in a string, which triggers an out-of-bounds read.
Gnu Libidn
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 22
Fedoraproject Fedora 21
294
VMScore
CVE-2019-3874
The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. Kernel 3.10.x and 4.18.x branches are believed to be vulnerable.
Linux Linux Kernel
Debian Debian Linux 8.0
Redhat Enterprise Linux 7.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Active Iq Unified Manager For Vmware Vsphere
Netapp Cn1610 Firmware -
890
VMScore
CVE-2012-3956
Use-after-free vulnerability in the MediaStreamGraphThreadRunnable::Run function in Mozilla Firefox prior to 15.0, Firefox ESR 10.x prior to 10.0.7, Thunderbird prior to 15.0, Thunderbird ESR 10.x prior to 10.0.7, and SeaMonkey prior to 2.12 allows remote malicious users to execu...
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Firefox Esr
Mozilla Thunderbird Esr
Suse Linux Enterprise Desktop 11
Opensuse Opensuse 12.2
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Desktop 10
Suse Linux Enterprise Server 10
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Server Eus 6.3
Redhat Enterprise Linux Eus 6.3
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »