Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2006-7236
The default configuration of xterm on Debian GNU/Linux sid and possibly Ubuntu enables the allowWindowOps resource, which allows user-assisted malicious users to execute arbitrary code or have unspecified other impact via escape sequences.
Invisible-island Xterm Nil
1 EDB exploit
9.3
CVSSv2
CVE-2008-3916
Heap-based buffer overflow in the strip_escapes function in signal.c in GNU ed prior to 1.0 allows context-dependent or user-assisted malicious users to execute arbitrary code via a long filename. NOTE: since ed itself does not typically run with special privileges, this issue on...
Gnu Ed 0.7
Gnu Ed 0.8
Gnu Ed 0.5
Gnu Ed 0.6
Gnu Ed 0.3
Gnu Ed 0.4
Gnu Ed 0.2
Gnu Ed 0.9
9.3
CVSSv2
CVE-2008-1949
The _gnutls_recv_client_kx_message function in lib/gnutls_kx.c in libgnutls in gnutls-serv in GnuTLS prior to 2.2.4 continues to process Client Hello messages within a TLS message after one has already been processed, which allows remote malicious users to cause a denial of servi...
Gnu Gnutls 2.3.5
Gnu Gnutls 1.6.0
Gnu Gnutls 2.0.0
Gnu Gnutls 1.5.0
Gnu Gnutls 1.2.8
Gnu Gnutls 1.1.14
Gnu Gnutls 2.3.4
Gnu Gnutls 1.7.3
Gnu Gnutls 1.4.1
Gnu Gnutls 1.4.3
Gnu Gnutls 1.2.11
Gnu Gnutls 1.1.21
Gnu Gnutls 1.7.5
Gnu Gnutls 1.7.11
Gnu Gnutls 1.0.20
Gnu Gnutls 1.2.5
Gnu Gnutls 2.2.4
Gnu Gnutls 1.2.4
Gnu Gnutls 1.3.1
Gnu Gnutls 1.0.24
Gnu Gnutls 1.7.15
Gnu Gnutls 1.6.1
9.3
CVSSv2
CVE-2007-0238
Stack-based buffer overflow in filter\starcalc\scflt.cxx in the StarCalc parser in OpenOffice.org (OOo) Office Suite prior to 2.2, and 1.x prior to 1.1.5 Patch, allows user-assisted remote malicious users to execute arbitrary code via a document with a long Note.
Openoffice Openoffice
9.3
CVSSv2
CVE-2007-0239
OpenOffice.org (OOo) Office Suite allows user-assisted remote malicious users to execute arbitrary commands via shell metacharacters in a prepared link in a crafted document.
Openoffice Openoffice
9.3
CVSSv2
CVE-2007-1536
Integer underflow in the file_printf function in the "file" program prior to 4.20 allows user-assisted malicious users to execute arbitrary code via a file that triggers a heap-based buffer overflow.
File File
1 EDB exploit
9.3
CVSSv2
CVE-2007-0002
Multiple heap-based buffer overflows in WordPerfect Document importer/exporter (libwpd) prior to 0.8.9 allow user-assisted remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted WordPerfect file in which values to...
Libwpd Libwpd Library
Libwpd Libwpd Library 0.8.2
Libwpd Libwpd Library 0.8.6
Libwpd Libwpd Library 0.8.7
9
CVSSv2
CVE-2022-24842
MinIO is a High Performance Object Storage released under GNU Affero General Public License v3.0. A security issue was found where an non-admin user is able to create service accounts for root or other admin users and then is able to assume their access policies via the generated...
Minio Minio
9
CVSSv2
CVE-2021-43413
An issue exists in GNU Hurd prior to 0.9 20210404-9. A single pager port is shared among everyone who mmaps a file, allowing anyone to modify any files that they can read. This can be trivially exploited to get full root access.
Gnu Hurd
9
CVSSv2
CVE-2019-5155
An exploitable command injection vulnerability exists in the cloud connectivity feature of WAGO PFC200. An attacker can inject operating system commands into any of the parameter values contained in the firmware update command. This affects WAGO PFC200 Firmware version 03.02.02(1...
Wago Pfc200 Firmware 03.00.39\\(12\\)
Wago Pfc200 Firmware 03.01.07\\(13\\)
Wago Pfc200 Firmware 03.02.02\\(14\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »