Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
enterprise mrg vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2012-4458
The AMQP type decoder in Apache Qpid 0.20 and previous versions allows remote malicious users to cause a denial of service (memory consumption and server crash) via a large number of zero width elements in the client-properties map in a connection.start-ok message.
Apache Qpid 0.14
Apache Qpid 0.7
Apache Qpid 0.15
Apache Qpid 0.10
Apache Qpid 0.17
Apache Qpid
Apache Qpid 0.9
Apache Qpid 0.13
Apache Qpid 0.6
Apache Qpid 0.11
Apache Qpid 0.12
Apache Qpid 0.18
Apache Qpid 0.16
Apache Qpid 0.19
Apache Qpid 0.5
Apache Qpid 0.8
445
VMScore
CVE-2012-4459
Integer overflow in the qpid::framing::Buffer::checkAvailable function in Apache Qpid 0.20 and previous versions allows remote malicious users to cause a denial of service (crash) via a crafted message, which triggers an out-of-bounds read.
Apache Qpid 0.14
Apache Qpid 0.7
Apache Qpid 0.15
Apache Qpid 0.10
Apache Qpid 0.17
Apache Qpid
Apache Qpid 0.9
Apache Qpid 0.13
Apache Qpid 0.6
Apache Qpid 0.11
Apache Qpid 0.12
Apache Qpid 0.18
Apache Qpid 0.16
Apache Qpid 0.19
Apache Qpid 0.5
Apache Qpid 0.8
668
VMScore
CVE-2011-3620
Apache Qpid 0.12 does not properly verify credentials during the joining of a cluster, which allows remote malicious users to obtain access to the messaging functionality and job functionality of a cluster by leveraging knowledge of a cluster-username.
Apache Qpid 0.12
801
VMScore
CVE-2012-3490
The (1) my_popenv_impl and (2) my_spawnv functions in src/condor_utils/my_popen.cpp and the (3) systemCommand function in condor_vm-gahp/vmgahp_common.cpp in Condor 7.6.x prior to 7.6.10 and 7.8.x prior to 7.8.4 does not properly check the return value of setuid calls, which migh...
Wisc Htcondor
356
VMScore
CVE-2012-3491
src/condor_schedd.V6/schedd.cpp in Condor 7.6.x prior to 7.6.10 and 7.8.x prior to 7.8.4 does not properly check the permissions of jobs, which allows remote authenticated users to remove arbitrary idle jobs via unspecified vectors.
Condor Project Condor 7.6.1
Condor Project Condor 7.6.3
Condor Project Condor 7.6.9
Condor Project Condor 7.6.0
Condor Project Condor 7.6.5
Condor Project Condor 7.6.6
Condor Project Condor 7.8.3
Condor Project Condor 7.8.1
Condor Project Condor 7.6.4
Condor Project Condor 7.8.0
Condor Project Condor 7.6.7
Condor Project Condor 7.6.2
Condor Project Condor 7.6.8
Condor Project Condor 7.8.2
570
VMScore
CVE-2012-3492
The filesystem authentication (condor_io/condor_auth_fs.cpp) in Condor 7.6.x prior to 7.6.10 and 7.8.x prior to 7.8.4 uses authentication directories even when they have weak permissions, which allows remote malicious users to impersonate users by renaming a user's authentic...
Condor Project Condor 7.6.1
Condor Project Condor 7.6.3
Condor Project Condor 7.6.9
Condor Project Condor 7.6.0
Condor Project Condor 7.6.5
Condor Project Condor 7.6.6
Condor Project Condor 7.8.3
Condor Project Condor 7.8.1
Condor Project Condor 7.6.4
Condor Project Condor 7.8.0
Condor Project Condor 7.6.7
Condor Project Condor 7.6.2
Condor Project Condor 7.6.8
Condor Project Condor 7.8.2
516
VMScore
CVE-2012-3493
The command_give_request_ad function in condor_startd.V6/command.cpp Condor 7.6.x prior to 7.6.10 and 7.8.x prior to 7.8.4 allows remote malicious users to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condor_startd port,...
Condor Project Condor 7.6.1
Condor Project Condor 7.6.3
Condor Project Condor 7.6.9
Condor Project Condor 7.6.0
Condor Project Condor 7.6.5
Condor Project Condor 7.6.6
Condor Project Condor 7.8.3
Condor Project Condor 7.8.1
Condor Project Condor 7.6.4
Condor Project Condor 7.8.0
Condor Project Condor 7.6.7
Condor Project Condor 7.6.2
Condor Project Condor 7.6.8
Condor Project Condor 7.8.2
696
VMScore
CVE-2019-11477
Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kern...
Linux Linux Kernel
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Advanced Firewall Manager 15.0.0
F5 Big-ip Access Policy Manager
F5 Big-ip Access Policy Manager 15.0.0
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Acceleration Manager 15.0.0
F5 Big-ip Link Controller
F5 Big-ip Link Controller 15.0.0
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Policy Enforcement Manager 15.0.0
F5 Big-ip Webaccelerator
F5 Big-ip Webaccelerator 15.0.0
F5 Big-ip Application Security Manager
F5 Big-ip Application Security Manager 15.0.0
F5 Big-ip Local Traffic Manager
F5 Big-ip Local Traffic Manager 15.0.0
F5 Big-ip Fraud Protection Service
F5 Big-ip Fraud Protection Service 15.0.0
F5 Big-ip Global Traffic Manager
F5 Big-ip Global Traffic Manager 15.0.0
F5 Big-ip Analytics
7 Github repositories
1 Article
446
VMScore
CVE-2019-11478
Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. This has been fi...
Linux Linux Kernel
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Advanced Firewall Manager 15.0.0
F5 Big-ip Access Policy Manager
F5 Big-ip Access Policy Manager 15.0.0
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Acceleration Manager 15.0.0
F5 Big-ip Link Controller
F5 Big-ip Link Controller 15.0.0
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Policy Enforcement Manager 15.0.0
F5 Big-ip Webaccelerator
F5 Big-ip Webaccelerator 15.0.0
F5 Big-ip Application Security Manager
F5 Big-ip Application Security Manager 15.0.0
F5 Big-ip Local Traffic Manager
F5 Big-ip Local Traffic Manager 15.0.0
F5 Big-ip Fraud Protection Service
F5 Big-ip Fraud Protection Service 15.0.0
F5 Big-ip Global Traffic Manager
F5 Big-ip Global Traffic Manager 15.0.0
F5 Big-ip Analytics
4 Github repositories
1 Article
445
VMScore
CVE-2012-2145
Apache Qpid 0.17 and previous versions does not properly restrict incoming client connections, which allows remote malicious users to cause a denial of service (file descriptor consumption) via a large number of incomplete connections.
Apache Qpid 0.14
Apache Qpid 0.7
Apache Qpid 0.10
Apache Qpid 0.9
Apache Qpid 0.6
Apache Qpid 0.12
Apache Qpid 0.16
Apache Qpid
Apache Qpid 0.8
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »