Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
health vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2022-2887
The WP Server Health Stats WordPress plugin prior to 1.7.0 does not escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
Acnam Wp Server Health Stats
4.3
CVSSv3
CVE-2020-2094
A missing permission check in Jenkins Health Advisor by CloudBees Plugin 3.0 and previous versions allows attackers with Overall/Read permission to send a fixed email to an attacker-specific recipient.
Jenkins Health Advisor By Cloudbees
5.5
CVSSv3
CVE-2022-35218
The NHI card’s web service component has a heap-based buffer overflow vulnerability due to insufficient validation for packet origin parameter length. A LAN attacker with general user privilege can exploit this vulnerability to disrupt service.
Nhi Health Insurance Web Service Component -
7.8
CVSSv3
CVE-2022-35217
The NHI card’s web service component has a stack-based buffer overflow vulnerability due to insufficient validation for network packet header length. A local area network attacker with general user privilege can exploit this vulnerability to execute arbitrary code, manipula...
Nhi Health Insurance Web Service Component -
5.5
CVSSv3
CVE-2022-35219
The NHI card’s web service component has a stack-based buffer overflow vulnerability due to insufficient validation for network packet key parameter. A LAN attacker with general user privilege can exploit this vulnerability to disrupt service.
Nhi Health Insurance Web Service Component -
NA
CVE-2014-7360
The How To Boil Eggs (aka com.appmakr.app842173) application 251333 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Health How To Boil Eggs 251333
7.5
CVSSv3
CVE-2021-45918
NHI’s health insurance web service component has insufficient validation for input string length, which can result in heap-based buffer overflow attack. A remote attacker can exploit this vulnerability to flood the memory space reserved for the program, in order to terminat...
Nhi Health Insurance Web Service Component -
NA
CVE-2014-7335
The Liver Health - Hepatitis C (aka gov.nyc.dohmh.HepC) application 2.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Nyc Liver Health - Hepatitis C 2.0.0
6.1
CVSSv3
CVE-2023-38435
An improper neutralization of input during web page generation ('Cross-site Scripting') [CWE-79] vulnerability in Apache Felix Healthcheck Webconsole Plugin version 2.0.2 and prior may allow an malicious user to perform a reflected cross-site scripting (XSS) attack. Up...
Apache Felix Health Check Webconsole Plugin
5.4
CVSSv3
CVE-2019-2629
Vulnerability in the Oracle Health Sciences Data Management Workbench component of Oracle Health Sciences Applications (subcomponent: User Interface). The supported version that is affected is 2.4.8. Easily exploitable vulnerability allows low privileged attacker with network acc...
Oracle Health Sciences Data Management Workbench 2.4.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »