Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
report project report vulnerabilities and exploits
(subscribe to this query)
4.7
CVSSv3
CVE-2020-8833
Time-of-check Time-of-use Race Condition vulnerability on crash report ownership change in Apport allows for a possible privilege escalation opportunity. If fs.protected_symlinks is disabled, this can be exploited between the os.open and os.chown calls when the Apport cron script...
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
Apport Project Apport -
NA
CVE-2012-5959
Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) prior to 1.6.18 allows remote malicious users to execute arbitrary code via a long ...
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.11
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.14
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.5
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.7
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.8
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.0
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.2
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.9
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.1
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.3
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.4
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.6
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.0
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.6
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.13
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.1
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.16
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.10
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.5
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.12
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.7
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.15
1 EDB exploit
2 Github repositories
NA
CVE-2012-5960
Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) prior to 1.6.18 allows remote malicious users to execute arbitrary code via a long ...
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.11
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.14
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.5
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.7
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.8
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.0
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.2
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.9
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.1
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.3
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.4
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.6
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.0
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.6
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.13
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.1
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.16
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.10
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.5
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.12
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.7
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.15
1 EDB exploit
1 Github repository
3.3
CVSSv3
CVE-2019-11483
Sander Bos discovered Apport mishandled crash dumps originating from containers. This could be used by a local malicious user to generate a crash report for a privileged process that is readable by an unprivileged user.
Apport Project Apport -
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
7.8
CVSSv3
CVE-2019-3844
It exists that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binaries, which would allow to create binaries owned by the service transient group with the setgid bit set. A local attacker may use this flaw to access resources...
Systemd Project Systemd
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Cn1610 Firmware -
1 EDB exploit
5.4
CVSSv3
CVE-2013-1932
A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via a project name.
Mantisbt Mantisbt 1.2.13
8.6
CVSSv3
CVE-2016-6368
A vulnerability in the detection engine parsing of Pragmatic General Multicast (PGM) protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition due to the Snort process unexpectedly resta...
Cisco Firepower Management Center 6.0.0.0
Cisco Firepower Management Center 6.0.1
Cisco Firepower Management Center 6.0.0
Cisco Firepower Management Center 6.0.0.1
5.4
CVSSv3
CVE-2019-10432
Jenkins HTML Publisher Plugin 1.20 and previous versions did not escape the project and build display names in the HTML report frame, resulting in a cross-site scripting vulnerability exploitable by users able to change those.
Jenkins Html Publisher
8.8
CVSSv3
CVE-2022-23940
SuiteCRM up to and including 7.12.1 and 8.x up to and including 8.0.1 allows Remote Code Execution. Authenticated users with access to the Scheduled Reports module can achieve this by leveraging PHP deserialization in the email_recipients property. By using a crafted request, the...
Salesagility Suitecrm
1 Github repository
7.5
CVSSv3
CVE-2023-25193
hb-ot-layout-gsubgpos.hh in HarfBuzz up to and including 6.0.0 allows malicious users to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks.
Harfbuzz Project Harfbuzz
Fedoraproject Fedora 36
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2023-38506
CVE-2024-37198
CVE-2023-45197
CVE-2024-38621
CVE-2024-30103
elevation of privilege
CVE-2024-0044
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »