Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ask vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-11093
Hyperledger Indy Node is the server portion of a distributed ledger purpose-built for decentralized identity. In Hyperledger Indy before version 1.12.4, there is lack of signature verification on a specific transaction which enables an malicious user to make certain unauthorized ...
Linuxfoundation Indy-node
6.1
CVSSv3
CVE-2021-20208
A flaw was found in cifs-utils in versions prior to 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vulnerability is to data confidentiality and integrity.
Samba Cifs-utils
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
9.8
CVSSv3
CVE-2022-32221
When doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously was used to issue a `PUT` request which used that callback. This f...
Haxx Curl
Netapp Clustered Data Ontap -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Apple Macos
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
1 Github repository
3.7
CVSSv3
CVE-2023-28322
An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously ...
Haxx Curl
Fedoraproject Fedora 37
Fedoraproject Fedora 38
Apple Macos
Netapp Clustered Data Ontap -
Netapp Ontap Antivirus Connector -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
1 Github repository
2.2
CVSSv3
CVE-2023-25815
In Git for Windows, the Windows port of Git, no localized messages are shipped with the installer. As a consequence, Git is expected not to localize messages at all, and skips the gettext initialization. However, due to a change in MINGW-packages, the `gettext()` function's ...
Git For Windows Project Git For Windows
Fedoraproject Fedora 37
Fedoraproject Fedora 38
7.5
CVSSv3
CVE-2021-41272
Besu is an Ethereum client written in Java. Starting in version 21.10.0, changes in the implementation of the SHL, SHR, and SAR operations resulted in the introduction of a signed type coercion error in values that represent negative values for 32 bit signed integers. Smart contr...
Linuxfoundation Besu 21.10.0
Linuxfoundation Besu 21.10.1
NA
CVE-2006-3117
Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x prior to 2.0.3 allows user-assisted malicious users to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math,...
Openoffice Openoffice 1.1.4
Openoffice Openoffice 2.0
Openoffice Openoffice 2.0.0
Openoffice Openoffice 2.0.1
Openoffice Openoffice 1.1.2
Openoffice Openoffice 1.1.3
Sun Staroffice 7.0
Sun Staroffice 8.0
Openoffice Openoffice 1.1.0
Openoffice Openoffice 1.1.1
Openoffice Openoffice 2.0.2
Sun Staroffice 6.0
NA
CVE-2006-2199
Unspecified vulnerability in Java Applets in OpenOffice.org 1.1.x (aka StarOffice) up to 1.1.5 and 2.0.x prior to 2.0.3 allows user-assisted malicious users to escape the Java sandbox and conduct unauthorized activities via certain applets in OpenOffice documents.
Openoffice Openoffice 1.1.5
Openoffice Openoffice 2.0.0
Openoffice Openoffice 1.1.0
Openoffice Openoffice 2.0.1
Openoffice Openoffice 2.0.2
Openoffice Openoffice 1.1.3
Openoffice Openoffice 1.1.4
Sun Staroffice 8.0
Openoffice Openoffice 1.1.1
Openoffice Openoffice 1.1.2
Sun Staroffice 6.0
Sun Staroffice 7.0
NA
CVE-2006-2198
OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x prior to 2.0.3 allows user-assisted malicious users to conduct unauthorized activities via an OpenOffice document with a malicious BASIC macro, which is executed without prompting the user.
Openoffice Openoffice 1.1.1a
Openoffice Openoffice 1.1.1b
Openoffice Openoffice 2.0.0 Rc2
Openoffice Openoffice 2.0.0 Rc3
Openoffice Openoffice 2.0.3 Rc4
Openoffice Openoffice 2.0.3 Rc5
Openoffice Openoffice 1.1.4
Openoffice Openoffice 1.1.5
Openoffice Openoffice 2.0.2 Rc2
Openoffice Openoffice 2.0.2 Rc3
Sun Staroffice 8.0
Openoffice Openoffice 1.1.2
Openoffice Openoffice 1.1.3
Openoffice Openoffice 2.0.1
Openoffice Openoffice 2.0.2
Openoffice Openoffice 2.0.2 Rc1
Openoffice Openoffice 2.0.3 Rc6
Sun Staroffice 7.0
Openoffice Openoffice 1.1.0
Openoffice Openoffice 1.1.1
Openoffice Openoffice 2.0.0
Openoffice Openoffice 2.0.0 Rc1
6.5
CVSSv3
CVE-2022-41933
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. When the `reset a forgotten password` feature of XWiki was used, the password was then stored in plain text in database. This only concerns XWiki 13.1RC1 and newer versions. N...
Xwiki Xwiki 13.1
Xwiki Xwiki
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »