Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.4 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2018-13099
An issue exists in fs/f2fs/inline.c in the Linux kernel up to and including 4.4. A denial of service (out-of-bounds memory access and BUG) can occur for a modified f2fs filesystem image in which an inline inode contains an invalid reserved blkaddr.
Linux Linux Kernel
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Opensuse Leap 42.3
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
4.8
CVSSv3
CVE-2017-18094
Various resources in Atlassian Fisheye and Crucible before version 4.4.3 (the fixed version for 4.4.x) and 4.5.0 allow remote attackers with administrative privileges to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the base path setti...
Atlassian Fisheye 4.5.0
Atlassian Fisheye
Atlassian Crucible 4.5.0
Atlassian Crucible
5.9
CVSSv3
CVE-2017-5361
Request Tracker (RT) 4.x prior to 4.0.25, 4.2.x prior to 4.2.14, and 4.4.x prior to 4.4.2 does not use a constant-time comparison algorithm for secrets, which makes it easier for remote malicious users to obtain sensitive user password information via a timing side-channel attack...
Bestpractical Request Tracker 4.0.5
Bestpractical Request Tracker 4.0.7
Bestpractical Request Tracker 4.0.14
Bestpractical Request Tracker 4.0.16
Bestpractical Request Tracker 4.0.21
Bestpractical Request Tracker 4.0.23
Bestpractical Request Tracker 4.2.5
Bestpractical Request Tracker 4.2.7
Bestpractical Request Tracker 4.4.1
Bestpractical Request Tracker 4.0.9
Bestpractical Request Tracker 4.0.10
Bestpractical Request Tracker 4.0.11
Bestpractical Request Tracker 4.0.12
Bestpractical Request Tracker 4.2.0
Bestpractical Request Tracker 4.2.1
Bestpractical Request Tracker 4.2.2
Bestpractical Request Tracker 4.2.3
Bestpractical Request Tracker 4.0.0
Bestpractical Request Tracker 4.0.1
Bestpractical Request Tracker 4.0.2
Bestpractical Request Tracker 4.0.3
Bestpractical Request Tracker 4.0.17
8.8
CVSSv3
CVE-2017-5943
Request Tracker (RT) 4.x prior to 4.0.25, 4.2.x prior to 4.2.14, and 4.4.x prior to 4.4.2 allows remote malicious users to obtain sensitive information about cross-site request forgery (CSRF) verification tokens via a crafted URL.
Bestpractical Request Tracker 4.0.9
Bestpractical Request Tracker 4.0.10
Bestpractical Request Tracker 4.0.11
Bestpractical Request Tracker 4.0.12
Bestpractical Request Tracker 4.2.0
Bestpractical Request Tracker 4.2.1
Bestpractical Request Tracker 4.2.2
Bestpractical Request Tracker 4.2.3
Bestpractical Request Tracker 4.2.4
Bestpractical Request Tracker 4.0.6
Bestpractical Request Tracker 4.0.8
Bestpractical Request Tracker 4.0.13
Bestpractical Request Tracker 4.0.15
Bestpractical Request Tracker 4.0.22
Bestpractical Request Tracker 4.0.24
Bestpractical Request Tracker 4.2.6
Bestpractical Request Tracker 4.2.8
Bestpractical Request Tracker 4.2.13
Bestpractical Request Tracker 4.4.0
Bestpractical Request Tracker 4.0.0
Bestpractical Request Tracker 4.0.1
Bestpractical Request Tracker 4.0.2
8.8
CVSSv3
CVE-2017-5944
The dashboard subscription interface in Request Tracker (RT) 4.x prior to 4.0.25, 4.2.x prior to 4.2.14, and 4.4.x prior to 4.4.2 might allow remote authenticated users with certain privileges to execute arbitrary code via a crafted saved search name.
Bestpractical Request Tracker 4.0.3
Bestpractical Request Tracker 4.0.5
Bestpractical Request Tracker 4.0.12
Bestpractical Request Tracker 4.0.14
Bestpractical Request Tracker 4.0.19
Bestpractical Request Tracker 4.0.21
Bestpractical Request Tracker 4.2.3
Bestpractical Request Tracker 4.2.5
Bestpractical Request Tracker 4.2.12
Bestpractical Request Tracker 4.4.1
Bestpractical Request Tracker 4.0.7
Bestpractical Request Tracker 4.0.8
Bestpractical Request Tracker 4.0.9
Bestpractical Request Tracker 4.0.10
Bestpractical Request Tracker 4.0.23
Bestpractical Request Tracker 4.0.24
Bestpractical Request Tracker 4.2.0
Bestpractical Request Tracker 4.2.1
Bestpractical Request Tracker 4.2.2
Bestpractical Request Tracker 4.4.0
Bestpractical Request Tracker 4.0.0
Bestpractical Request Tracker 4.0.1
6.1
CVSSv3
CVE-2016-6127
Cross-site scripting (XSS) vulnerability in Request Tracker (RT) 4.x prior to 4.0.25, 4.2.x prior to 4.2.14, and 4.4.x prior to 4.4.2, when the AlwaysDownloadAttachments config setting is not in use, allows remote malicious users to inject arbitrary web script or HTML via a file ...
Bestpractical Request Tracker 4.0.7
Bestpractical Request Tracker 4.0.8
Bestpractical Request Tracker 4.0.9
Bestpractical Request Tracker 4.0.10
Bestpractical Request Tracker 4.0.23
Bestpractical Request Tracker 4.0.24
Bestpractical Request Tracker 4.2.0
Bestpractical Request Tracker 4.2.1
Bestpractical Request Tracker 4.4.0
Bestpractical Request Tracker 4.0.0
Bestpractical Request Tracker 4.0.1
Bestpractical Request Tracker 4.0.15
Bestpractical Request Tracker 4.0.16
Bestpractical Request Tracker 4.0.17
Bestpractical Request Tracker 4.0.18
Bestpractical Request Tracker 4.2.7
Bestpractical Request Tracker 4.2.8
Bestpractical Request Tracker 4.2.9
Bestpractical Request Tracker 4.2.10
Bestpractical Request Tracker 4.0.3
Bestpractical Request Tracker 4.0.5
Bestpractical Request Tracker 4.0.12
7.8
CVSSv3
CVE-2017-0588
A remote code execution vulnerability in id3/ID3.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code ex...
Google Android 4.0.1
Google Android 4.0.2
Google Android 4.0.3
Google Android 4.0.4
Google Android 6.0
Google Android 6.0.1
Google Android 5.0
Google Android 5.0.1
Google Android 4.2.2
Google Android 4.3
Google Android 4.3.1
Google Android 4.4
Google Android 7.0
Google Android 7.1.1
Google Android 5.0.2
Google Android 5.1.0
Google Android 4.0
Google Android 4.1
Google Android 4.2
Google Android 4.4.2
Google Android 4.4.4
Google Android 7.1.2
7.8
CVSSv3
CVE-2017-0592
A remote code execution vulnerability in FLACExtractor.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote c...
Google Android 7.1.2
Google Android 7.0
Google Android 7.1.0
Google Android 4.0.4
Google Android 4.1
Google Android 4.1.2
Google Android 4.2
Google Android 5.0.2
Google Android 5.1
Google Android 5.1.0
Google Android 5.1.1
Google Android 4.4
Google Android 4.4.1
Google Android 4.4.2
Google Android 4.4.3
Google Android 4.4.4
Google Android 7.1.1
Google Android 6.0.1
Google Android 5.0.1
Google Android 4.0
Google Android 4.0.2
Google Android 4.2.2
5.5
CVSSv3
CVE-2017-0600
A remote denial of service vulnerability in libstagefright in Mediaserver could enable an malicious user to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Ve...
Google Android 6.0.1
Google Android 5.0
Google Android 5.0.1
Google Android 5.0.2
Google Android 4.3
Google Android 4.3.1
Google Android 4.4
Google Android 4.4.1
Google Android 7.1.2
Google Android 4.0.1
Google Android 4.0.2
Google Android 4.0.3
Google Android 4.0.4
Google Android 4.1
Google Android 7.1.0
Google Android 6.0
Google Android 5.1
Google Android 5.1.1
Google Android 4.1.2
Google Android 4.2.1
Google Android 4.4.3
Google Android 7.0
4.7
CVSSv3
CVE-2017-0603
A denial of service vulnerability in libstagefright in Mediaserver could enable an malicious user to use a specially crafted file to cause a device hang or reboot. This issue is rated as Moderate because it requires an uncommon device configuration. Product: Android. Versions: 4....
Google Android 7.1.2
Google Android 7.0
Google Android 7.1.0
Google Android 7.1.1
Google Android 4.1
Google Android 4.1.2
Google Android 4.2
Google Android 4.2.1
Google Android 5.0.2
Google Android 5.1
Google Android 5.1.0
Google Android 5.1.1
Google Android 4.0
Google Android 4.4.1
Google Android 4.4.2
Google Android 4.4.3
Google Android 4.4.4
Google Android 6.0
Google Android 5.0
Google Android 4.0.1
Google Android 4.0.3
Google Android 4.3
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »