Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sdk vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2015-2000
The Jumio SDK prior to 1.5.0 for Android might allow malicious users to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.
Jumio Jumio Sdk
9.8
CVSSv3
CVE-2015-2001
The MetaIO SDK prior to 6.0.2.1 for Android might allow malicious users to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.
Metaio Metaio Sdk
9.8
CVSSv3
CVE-2015-2002
The ESRI ArcGis Runtime SDK prior to 10.2.6-2 for Android might allow malicious users to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.
Esri Arcgisruntime Sdk
9.8
CVSSv3
CVE-2015-2004
The GraceNote GNSDK SDK before SVN Changeset 1.1.7 for Android might allow malicious users to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.
Gracenote Gnsdk
9.8
CVSSv3
CVE-2015-2020
The MyScript SDK prior to 1.3 for Android might allow malicious users to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.
Myscript Myscript
9.8
CVSSv3
CVE-2017-14377
EMC RSA Authentication Agent for Web: Apache Web Server version 8.0 and RSA Authentication Agent for Web: Apache Web Server version 8.0.1 prior to Build 618 have a security vulnerability that could potentially lead to authentication bypass.
Rsa Authentication Agent For Web 8.0.1
Rsa Authentication Agent For Web 8.0
1 Article
9.8
CVSSv3
CVE-2017-3216
WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to an authentication bypass allowing a remote, unauthenticated malicious user to gain administrator access to the device by performing an administrator password change on the device via...
Greenpacket Ox350 Firmware -
Huawei Bm2022 Firmware -
Huawei Hes-309m Firmware -
Huawei Hes-319m Firmware -
Huawei Hes-319m2w Firmware -
Huawei Hes-339m Firmware -
Mada Soho Wireless Router Firmware -
Zte Ox-330p Firmware -
Zyxel Max218m Firmware -
Zyxel Max218m1w Firmware -
Zyxel Max218mw Firmware -
Zyxel Max308m Fimware -
Zyxel Max318m Firmware -
Zyxel Max338m Firmware -
9.8
CVSSv3
CVE-2017-6667
A vulnerability in the update process for the dynamic JAR file of the Cisco Context Service software development kit (SDK) could allow an unauthenticated, remote malicious user to execute arbitrary code on the affected device with the privileges of the web server. More Informatio...
Cisco Context Service Development Kit 2.0
9.8
CVSSv3
CVE-2016-8863
Heap-based buffer overflow in the create_url_list function in gena/gena_device.c in Portable UPnP SDK (aka libupnp) prior to 1.6.21 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a valid URI followed by an invalid one in ...
Libupnp Project Libupnp
Debian Debian Linux 8.0
1 Github repository
9.8
CVSSv3
CVE-2016-9303
Multiple buffer overflows in the Autodesk FBX-SDK prior to 2017.1 can allow malicious users to execute arbitrary code or cause an infinite loop condition when reading or converting malformed FBX format files.
Autodesk Fbx Software Development Kit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »