Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
connect vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2021-22908
A buffer overflow vulnerability exists in Windows File Resource Profiles in 9.X allows a remote authenticated user with privileges to browse SMB shares to execute arbitrary code as the root user. As of version 9.1R3, this permission is not enabled by default.
Pulsesecure Pulse Connect Secure 9.0rx
Ivanti Connect Secure 9.1
Ivanti Connect Secure 9.0
356
VMScore
CVE-2013-6717
The OLAP query engine in IBM DB2 and DB2 Connect 9.7 through FP9, 9.8 through FP5, 10.1 through FP3, and 10.5 through FP2, and the DB2 pureScale Feature 9.8 for Enterprise Server Edition, allows remote authenticated users to cause a denial of service (database outage and deactiva...
Ibm Db2 Connect 9.7
Ibm Db2 Connect 9.7.0.7
Ibm Db2 Connect 9.7.0.8
Ibm Db2 9.7.0.2
Ibm Db2 9.7.0.3
Ibm Db2 Connect 9.7.0.3
Ibm Db2 Connect 9.7.0.4
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.9
Ibm Db2 9.7.0.6
Ibm Db2 Connect 9.7.0.1
Ibm Db2 Connect 9.7.0.2
Ibm Db2 Connect 9.7.0.9
Ibm Db2 9.7.0.7
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.5
Ibm Db2 Connect 9.7.0.5
Ibm Db2 Connect 9.7.0.6
Ibm Db2 9.7
Ibm Db2 9.7.0.1
Ibm Db2 Connect 9.8
Ibm Db2 9.8
NA
CVE-2022-43874
IBM App Connect Enterprise Certified Container 4.1, 4.2, 5.0, 5.1, 5.2, 6.0, 6.1, 6.2, and 7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to c...
Ibm App Connect Enterprise Certified Container 4.2
Ibm App Connect Enterprise Certified Container 5.0
Ibm App Connect Enterprise Certified Container 4.1
Ibm App Connect Enterprise Certified Container 5.1
Ibm App Connect Enterprise Certified Container 5.2
Ibm App Connect Enterprise Certified Container 6.0
Ibm App Connect Enterprise Certified Container 6.1
Ibm App Connect Enterprise Certified Container 6.2
Ibm App Connect Enterprise Certified Container 7.0
605
VMScore
CVE-2022-29623
An arbitrary file upload vulnerability in the file upload module of Connect-Multiparty v2.2.0 allows malicious users to execute arbitrary code via a crafted PDF file.
Connect-multiparty Project Connect-multiparty 2.2.0
1 Github repository
169
VMScore
CVE-2013-0527
The Browser in IBM Sterling Connect:Direct 1.4 prior to 1.4.0.11 and 1.5 up to and including 1.5.0.1 does not close pages upon the timeout of a session, which allows physically proximate malicious users to obtain sensitive administrative-console information by reading the screen ...
Ibm Sterling Connect Direct User Interface 1.4.0.0
Ibm Sterling Connect Direct User Interface 1.4.0.2
Ibm Sterling Connect Direct User Interface 1.4.0.7
Ibm Sterling Connect Direct User Interface 1.4.0.10
Ibm Sterling Connect Direct User Interface 1.4.0.3
Ibm Sterling Connect Direct User Interface 1.4.0.6
Ibm Sterling Connect Direct User Interface 1.5.0.0
Ibm Sterling Connect Direct User Interface 1.5.0.1
445
VMScore
CVE-2013-0529
The Browser in IBM Sterling Connect:Direct 1.4 prior to 1.4.0.11 and 1.5 up to and including 1.5.0.1 does not set the secure flag for the session cookie in an https session, which makes it easier for remote malicious users to capture this cookie by intercepting its transmission w...
Ibm Sterling Connect Direct User Interface 1.4.0.0
Ibm Sterling Connect Direct User Interface 1.4.0.10
Ibm Sterling Connect Direct User Interface 1.4.0.6
Ibm Sterling Connect Direct User Interface 1.4.0.7
Ibm Sterling Connect Direct User Interface 1.4.0.2
Ibm Sterling Connect Direct User Interface 1.4.0.3
Ibm Sterling Connect Direct User Interface 1.5.0.0
Ibm Sterling Connect Direct User Interface 1.5.0.1
409
VMScore
CVE-2013-4033
IBM DB2 and DB2 Connect 9.7 through FP8, 9.8 through FP5, 10.1 through FP2, and 10.5 through FP1 allow remote authenticated users to execute DML statements by leveraging EXPLAIN authority.
Ibm Db2 10.5
Ibm Db2 10.1
Ibm Db2 Connect 10.1
Ibm Db2 Connect 9.5
Ibm Db2 9.8
Ibm Db2 9.7
Ibm Db2 Connect 10.5
Ibm Db2 Connect 9.7
Ibm Db2 Connect 9.8
668
VMScore
CVE-2019-15658
connect-pg-simple prior to 6.0.1 allows SQL injection if tableName or schemaName is untrusted data.
Connect-pg-simple Project Connect-pg-simple
445
VMScore
CVE-2020-10377
A weak encryption vulnerability in Mitel MiVoice Connect Client prior to 214.100.1214.0 could allow an unauthenticated malicious user to gain access to user credentials. A successful exploit could allow an malicious user to access the system with compromised user credentials.
Mitel Mivoice Connect
Mitel Mivoice Connect Client
NA
CVE-2023-25599
A vulnerability in the conferencing component of Mitel MiVoice Connect up to and including 19.3 SP2, 22.24.1500.0 could allow an unauthenticated malicious user to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation for the test_presenter.php page....
Mitel Mivoice Connect
Mitel Mivoice Connect 19.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »