Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
matt vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-2285
The ssh-vulnkey tool on Ubuntu Linux 7.04, 7.10, and 8.04 LTS does not recognize authorized_keys lines that contain options, which makes it easier for remote malicious users to exploit CVE-2008-0166 by guessing a key that was not identified by this tool.
Ubuntu Linux 7.04
Ubuntu Linux 8.04
Ubuntu Linux 7.10
NA
CVE-2013-4495
The send_the_mail function in server/svr_mail.c in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) prior to 4.2.6 allows remote malicious users to execute arbitrary commands via shell metacharacters in the email (-M switch) to qsub.
Adaptivecomputing Torque Resource Manager 3.0.3
Adaptivecomputing Torque Resource Manager 2.4.4
Adaptivecomputing Torque Resource Manager 4.2.3
Adaptivecomputing Torque Resource Manager 2.5.5
Adaptivecomputing Torque Resource Manager 2.5.6
Adaptivecomputing Torque Resource Manager 4.2.2
Adaptivecomputing Torque Resource Manager 2.1.3
Adaptivecomputing Torque Resource Manager 2.4.16
Adaptivecomputing Torque Resource Manager 3.0.4
Adaptivecomputing Torque Resource Manager 2.4.17
Adaptivecomputing Torque Resource Manager 2.3.5
Adaptivecomputing Torque Resource Manager 2.3.9
Adaptivecomputing Torque Resource Manager 2.5.2
Adaptivecomputing Torque Resource Manager 3.0.0
Adaptivecomputing Torque Resource Manager 2.3.6
Adaptivecomputing Torque Resource Manager 2.5.0
Adaptivecomputing Torque Resource Manager 4.1.7
Adaptivecomputing Torque Resource Manager 4.2.4.1
Adaptivecomputing Torque Resource Manager 2.4.13
Adaptivecomputing Torque Resource Manager 2.3.11
Adaptivecomputing Torque Resource Manager 2.4.5
Adaptivecomputing Torque Resource Manager 2.5.4
NA
CVE-2003-0202
The (1) halstead and (2) gather_stats scripts in metrics 1.0 allow local users to overwrite arbitrary files via a symlink attack on temporary files.
Brian Renaud Metrics 1.0
NA
CVE-2009-2411
Multiple integer overflows in the libsvn_delta library in Subversion prior to 1.5.7, and 1.6.x prior to 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overfl...
Subversion Subversion 0.34.0
Subversion Subversion 1.0.4
Subversion Subversion 1.1.4
Subversion Subversion 0.28.0
Subversion Subversion 0.32.0
Subversion Subversion 0.31.0
Subversion Subversion 0.36.0
Subversion Subversion 1.6.1
Subversion Subversion 1.4.3
Subversion Subversion 1.4.1
Subversion Subversion 0.30.0
Subversion Subversion 1.1.2
Subversion Subversion 1.2.3
Subversion Subversion 1.0.5
Subversion Subversion 1.1.0 Rc3
Subversion Subversion 0.35.1
Subversion Subversion 0.28.2
Subversion Subversion 0.33.1
Subversion Subversion 1.0.2
Subversion Subversion 0.22.1
Subversion Subversion 1.5.0
Subversion Subversion
NA
CVE-2009-0148
Multiple buffer overflows in Cscope prior to 15.7a allow remote malicious users to execute arbitrary code via long strings in input such as (1) source-code tokens and (2) pathnames, related to integer overflows in some cases. NOTE: this issue exists because of an incomplete fix f...
Cscope Cscope 15.6
Cscope Cscope 15.0bl2
Cscope Cscope 15.5
Cscope Cscope 15.3
Cscope Cscope 13.0
Cscope Cscope 15.1
Cscope Cscope 15.4
Cscope Cscope 15.7
5.5
CVSSv3
CVE-2015-5158
Stack-based buffer overflow in hw/scsi/scsi-bus.c in QEMU, when built with SCSI-device emulation support, allows guest OS users with CAP_SYS_RAWIO permissions to cause a denial of service (instance crash) via an invalid opcode in a SCSI command descriptor block.
Qemu Qemu 2.4.0
Qemu Qemu
NA
CVE-2009-3300
Multiple cross-site scripting (XSS) vulnerabilities in the Identity Provider (IdP) 1.3.x prior to 1.3.4 and 2.x prior to 2.1.5, and the Service Provider 1.3.x prior to 1.3.5 and 2.x prior to 2.3, in Internet2 Middleware Initiative Shibboleth allow remote malicious users to inject...
Internet2 Identity Provider 2.1.3
Internet2 Identity Provider 1.3
Internet2 Service Provider 1.3.1
Internet2 Service Provider 1.3
Internet2 Service Provider 2.1
Internet2 Identity Provider 1.3.3
Internet2 Identity Provider 2.1.1
Internet2 Identity Provider 2.1.0
Internet2 Identity Provider 2.1.4
Internet2 Service Provider 1.3.2
Internet2 Service Provider 2.0
Internet2 Service Provider 1.3.3
Internet2 Identity Provider 2.1.2
Internet2 Identity Provider 1.3.2
Internet2 Identity Provider 1.3.1
Internet2 Service Provider 2.2
NA
CVE-2015-4105
Xen 3.3.x up to and including 4.5.x enables logging for PCI MSI-X pass-through error messages, which allows local x86 HVM guests to cause a denial of service (host disk consumption) via certain invalid operations.
Xen Xen 4.3.2
Xen Xen 4.1.5
Xen Xen 4.2.2
Xen Xen 3.4.0
Xen Xen 4.3.0
Xen Xen 4.0.4
Xen Xen 4.0.2
Xen Xen 3.3.2
Xen Xen 4.1.2
Xen Xen 3.4.4
Xen Xen 4.0.0
Xen Xen 4.1.1
Xen Xen 4.2.0
Xen Xen 4.1.0
Xen Xen 3.4.3
Xen Xen 4.4.1
Xen Xen 4.1.3
Xen Xen 4.1.6.1
Xen Xen 4.3.4
Xen Xen 3.3.1
Xen Xen 3.4.2
Xen Xen 4.1.4
NA
CVE-2015-4106
QEMU does not properly restrict write access to the PCI config space for certain PCI pass-through devices, which might allow local x86 HVM guests to gain privileges, cause a denial of service (host crash), obtain sensitive information, or possibly have other unspecified impact vi...
Qemu Qemu
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Fedoraproject Fedora 22
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Suse Linux Enterprise Server 11
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Server 12
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Citrix Xenserver 6.0.2
Citrix Xenserver 6.0
Citrix Xenserver 6.1.0
Citrix Xenserver 6.5
Citrix Xenserver 6.2.0
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
NA
CVE-2015-4103
Xen 3.3.x up to and including 4.5.x does not properly restrict write access to the host MSI message data field, which allows local x86 HVM guest administrators to cause a denial of service (host interrupt handling confusion) via vectors related to qemu and accessing spanning mult...
Xen Xen 4.3.2
Xen Xen 4.1.5
Xen Xen 4.2.2
Xen Xen 4.2.3
Xen Xen 3.4.0
Xen Xen 4.3.0
Xen Xen 4.0.4
Xen Xen 4.0.2
Xen Xen 3.3.2
Xen Xen 4.1.2
Xen Xen 3.4.4
Xen Xen 4.1.1
Xen Xen 4.2.0
Xen Xen 4.1.0
Xen Xen 3.4.3
Xen Xen 4.4.1
Xen Xen 4.1.3
Xen Xen 4.1.6.1
Xen Xen 4.3.4
Xen Xen 3.3.1
Xen Xen 3.4.2
Xen Xen 4.1.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »