Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
longer vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-34940
Asus RT-N10LX Router v2.0.0.39 exists to contain a stack overflow via the url parameter at /start-apply.html. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Asus Rt-n10lx Firmware 2.0.0.39
7.5
CVSSv3
CVE-2023-34942
Asus RT-N10LX Router v2.0.0.39 exists to contain a stack overflow via the mac parameter at /start-apply.html. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Asus Rt-n10lx Firmware 2.0.0.39
6.5
CVSSv3
CVE-2023-6910
A vulnerable API method in M-Files Server prior to 23.12.13195.0 allows for uncontrolled resource consumption. Authenticated attacker can exhaust server storage space to a point where the server can no longer serve requests.
M-files M-files Server
8.6
CVSSv3
CVE-2017-1145
IBM WebSphere MQ 8.0.0.6 does not properly terminate channel agents when they are no longer needed, which could allow a user to cause a denial of service through resource exhaustion. IBM Reference #: 1999672.
Ibm Websphere Mq 8.0.0.6
7.5
CVSSv3
CVE-2021-38614
Polipo up to and including 1.1.1, when NDEBUG is used, allows a heap-based buffer overflow during parsing of a Range header. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Polipo Project Polipo
9.8
CVSSv3
CVE-2023-36092
Authentication Bypass vulnerability in D-Link DIR-859 FW105b03 allows remote malicious users to gain escalated privileges via via phpcgi_main. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Dlink Dir-859 Firmware 1.05b03
5.4
CVSSv3
CVE-2023-25834
Changes to user permissions in Portal for ArcGIS 10.9.1 and below are incompletely applied in specific use cases. This issue may allow users to access content that they are no longer privileged to access.
Esri Portal For Arcgis
NA
CVE-2008-7164
Multiple unspecified vulnerabilities in Shareaza prior to 2.3.1.0 have unknown impact and attack vectors related to "very important security fixes," possibly involving update notifications and a domain that is no longer controlled by the vendor.
Ryo-oh-ki Shareaza 2.2.1.0
Ryo-oh-ki Shareaza 2.0.0.0
Ryo-oh-ki Shareaza 2.2.0.0
Ryo-oh-ki Shareaza
7.8
CVSSv3
CVE-2020-24330
An issue exists in TrouSerS up to and including 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed.
Trousers Project Trousers
Fedoraproject Fedora 33
6.5
CVSSv3
CVE-2020-15501
Smarter Coffee Maker prior to 2nd generation allows firmware replacement without authentication or authorization. User interaction is required to press a button. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Smarter Smarter Coffee Maker 1st Generation -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »