Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shadow vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-30154
Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2019 -
Microsoft Windows 10 20h2
Microsoft Windows Server 2022 -
9
CVSSv3
CVE-2017-10915
The shadow-paging feature in Xen up to and including 4.8.x mismanages page references and consequently introduces a race condition, which allows guest OS users to obtain Xen privileges, aka XSA-219.
Xen Xen
9.8
CVSSv3
CVE-2024-24324
TOTOLINK A8000RU v7.1cu.643_B20200521 exists to contain a hardcoded password for root stored in /etc/shadow.
Totolink A8000ru Firmware 7.1cu.643 B20200521
NA
CVE-1999-0242
Remote attackers can access mail files via POP3 in some Linux systems that are using shadow passwords.
Slackware Slackware Linux
8.8
CVSSv3
CVE-2016-3960
Integer overflow in the x86 shadow pagetable code in Xen allows local guest OS users to cause a denial of service (host crash) or possibly gain privileges by shadowing a superpage mapping.
Xen Xen -
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Fedoraproject Fedora 22
Oracle Vm Server 3.4
Oracle Vm Server 3.3
Oracle Vm Server 3.2
NA
CVE-1999-0712
A vulnerability in Caldera Open Administration System (COAS) allows the /etc/shadow password file to be made world-readable.
Caldera Coas 1.0.5
Caldera Coas 1.0.6
Caldera Coas 1.0.7
Caldera Openlinux 2.2
8.8
CVSSv3
CVE-2017-15592
An issue exists in Xen up to and including 4.9.x allowing x86 HVM guest OS users to cause a denial of service (hypervisor crash) or possibly gain privileges because self-linear shadow mappings are mishandled for translated guests.
Xen Xen
7.8
CVSSv3
CVE-2017-17566
An issue exists in Xen up to and including 4.9.x allowing PV guest OS users to cause a denial of service (host OS crash) or gain host OS privileges in shadow mode by mapping a certain auxiliary page.
Xen Xen
NA
CVE-2024-22085
An issue exists in Elspec G5 digital fault recorder versions 1.1.4.15 and before. The shadow file is world readable.
7.5
CVSSv3
CVE-2021-45043
HD-Network Real-time Monitoring System 2.0 allows ../ directory traversal to read /etc/shadow via the /language/lang s_Language parameter.
Hd-network Real-time Monitoring System Project Hd-network Real-time Monitoring System 2.0
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »