Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
marco ivaldi vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-46285
A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the end-of-file condition will not be detected, leading to an infinite loop and resulting in a Denial of Service in the application linked to the library.
X.org Libxpm
7.8
CVSSv3
CVE-2022-26532
A argument injection vulnerability in the 'packet-trace' CLI command of Zyxel USG/ZyWALL series firmware versions 4.09 up to and including 4.71, USG FLEX series firmware versions 4.50 up to and including 5.21, ATP series firmware versions 4.32 up to and including 5.21, ...
Zyxel Vpn100 Firmware
Zyxel Vpn1000 Firmware
Zyxel Vpn300 Firmware
Zyxel Vpn50 Firmware
Zyxel Atp100 Firmware
Zyxel Atp100w Firmware
Zyxel Atp200 Firmware
Zyxel Atp500 Firmware
Zyxel Atp700 Firmware
Zyxel Atp800 Firmware
Zyxel Usg 110 Firmware
Zyxel Usg 1100 Firmware
Zyxel Usg 1900 Firmware
Zyxel Usg 20w Firmware
Zyxel Usg 20w-vpn Firmware
Zyxel Usg 2200-vpn Firmware
Zyxel Usg 310 Firmware
Zyxel Usg 40 Firmware
Zyxel Usg 40w Firmware
Zyxel Usg 60 Firmware
Zyxel Usg 60w Firmware
Zyxel Usg Flex 100 Firmware
9.8
CVSSv3
CVE-2023-49287
TinyDir is a lightweight C directory and file reader. Buffer overflows in the `tinydir_file_open()` function. This vulnerability has been patched in version 1.2.6.
Cxong Tinydir
1 Github repository
NA
CVE-2024-2212
In Eclipse ThreadX prior to 6.4.0, xQueueCreate() and xQueueCreateSet() functions from the FreeRTOS compatibility API (utility/rtos_compatibility_layers/FreeRTOS/tx_freertos.c) were missing parameter checks. This could lead to integer wraparound, under-allocations and heap buffer...
NA
CVE-2024-2214
In Eclipse ThreadX before version 6.4.0, the _Mtxinit() function in the Xtensa port was missing an array size check causing a memory overwrite. The affected file was ports/xtensa/xcc/src/tx_clib_lock.c
NA
CVE-2024-2452
In Eclipse ThreadX NetX Duo prior to 6.4.0, if an attacker can control parameters of __portable_aligned_alloc() could cause an integer wrap-around and an allocation smaller than expected. This could cause subsequent heap buffer overflows.
NA
CVE-2003-0609
Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 through 9 allows local users to gain root privileges via a long LD_PRELOAD environment variable.
Sun Solaris 8.0
Sun Solaris 9.0
Sun Solaris 7.0
Sun Sunos 5.8
Sun Solaris 2.6
Sun Sunos -
Sun Sunos 5.7
2 EDB exploits
NA
CVE-2004-0687
Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm prior to 6.8.1 allow remote malicious users to execute arbitrary code via a malformed XPM image file.
Xfree86 Project X11r6 4.1.0
Xfree86 Project X11r6 3.3.6
Xfree86 Project X11r6 4.0.2.11
Xfree86 Project X11r6 4.0.3
X.org X11r6 6.7.0
Xfree86 Project X11r6 4.3.0
Xfree86 Project X11r6 4.2.1
X.org X11r6 6.8
Xfree86 Project X11r6 4.0
Xfree86 Project X11r6 4.0.1
Xfree86 Project X11r6 4.2.0
Xfree86 Project X11r6 4.1.12
Xfree86 Project X11r6 4.1.11
Suse Suse Linux 9.0
Suse Suse Linux 8.2
Suse Suse Linux 8
Suse Suse Linux 9.1
Openbsd Openbsd 3.5
Openbsd Openbsd 3.4
Suse Suse Linux 8.1
NA
CVE-2009-2669
A certain debugging component in IBM AIX 5.3 and 6.1 does not properly handle the (1) _LIB_INIT_DBG and (2) _LIB_INIT_DBG_FILE environment variables, which allows local users to gain privileges by leveraging a setuid-root program to create an arbitrary root-owned file with world-...
Ibm Aix 5.3
Ibm Aix 6.1
1 EDB exploit
NA
CVE-2003-0190
OpenSSH-portable (OpenSSH) 3.6.1p1 and previous versions with PAM support enabled immediately sends an error message when a user does not exist, which allows remote malicious users to determine valid usernames via a timing attack.
Openbsd Openssh
Openbsd Openssh 3.6.1
Openpkg Openpkg 1.3
Openpkg Openpkg 1.2
Siemens Scalance X204rna Ecc Firmware
Siemens Scalance X204rna Firmware
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »