Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
automation manager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-34241
OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when it should hav...
Openprinting Cups
Fedoraproject Fedora 37
Fedoraproject Fedora 38
Debian Debian Linux 10.0
Apple Macos
NA
CVE-2023-2778
A denial-of-service vulnerability exists in Rockwell Automation FactoryTalk Transaction Manager. This vulnerability can be exploited by sending a modified packet to port 400. If exploited, the application could potentially crash or experience a high CPU or memory usage condition...
Rockwellautomation Factorytalk Transaction Manager
NA
CVE-2023-32324
OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote malicious user to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function `format_log_line` could allow rem...
Openprinting Cups
Debian Debian Linux 10.0
NA
CVE-2023-1981
A vulnerability was found in the avahi library. This flaw allows an unprivileged user to make a dbus call, causing the avahi daemon to crash.
Avahi Avahi 0.7-20
Fedoraproject Fedora 37
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
NA
CVE-2023-20883
In Spring Boot versions 3.0.0 - 3.0.6, 2.7.0 - 2.7.11, 2.6.0 - 2.6.14, 2.5.0 - 2.5.14 and older unsupported versions, there is potential for a denial-of-service (DoS) attack if Spring MVC is used together with a reverse proxy cache.
Vmware Spring Boot
2 Github repositories
NA
CVE-2023-24539
Angle brackets (<>) are not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a '/' character can result in unexpectedly closing the CSS context and allowing for injection of unexpected HTML, if exe...
Golang Go
1 Github repository
NA
CVE-2023-24540
Not all valid JavaScript whitespace characters are considered to be whitespace. Templates containing whitespace characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be properly sanitized during exe...
Golang Go
3 Github repositories
NA
CVE-2023-29400
Templates containing actions in unquoted HTML attributes (e.g. "attr={{.}}") executed with empty input can result in output with unexpected results when parsed due to HTML normalization rules. This may allow injection of arbitrary attributes into tags.
Golang Go
1 Github repository
NA
CVE-2023-21930
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Diffi...
Oracle Jre 11.0.18
Oracle Jre 17.0.6
Oracle Jdk 11.0.18
Oracle Graalvm 20.3.9
Oracle Graalvm 21.3.5
Oracle Graalvm 22.3.1
Oracle Jdk 1.8.0
Oracle Jdk 17.0.6
Oracle Jre 1.8.0
Oracle Jre 20
Oracle Jdk 20
Netapp Oncommand Insight -
Netapp 7-mode Transition Tool -
Netapp Brocade San Navigator -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
Oracle Openjdk 8
Oracle Openjdk 20
Oracle Openjdk
NA
CVE-2023-21937
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1....
Oracle Jre 11.0.18
Oracle Jre 17.0.6
Oracle Jdk 11.0.18
Oracle Graalvm 20.3.9
Oracle Graalvm 21.3.5
Oracle Graalvm 22.3.1
Oracle Jdk 1.8.0
Oracle Jdk 17.0.6
Oracle Jre 1.8.0
Oracle Jre 20
Oracle Jdk 20
Netapp Oncommand Insight -
Netapp 7-mode Transition Tool -
Netapp Brocade San Navigator -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Insights Storage Workload Security Agent -
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
Oracle Openjdk 8
Oracle Openjdk 20
Oracle Openjdk
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »