Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
message gateway vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2015-7854
Buffer overflow in the password management functionality in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
578
VMScore
CVE-2015-7849
Use-after-free vulnerability in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
571
VMScore
CVE-2011-3188
The (1) IPv4 and (2) IPv6 implementations in the Linux kernel prior to 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote malicious users to cause a denial of service (disrupted networking) or hijack ...
Linux Linux Kernel
Redhat Enterprise Linux 4.0
F5 Enterprise Manager 3.0.0
F5 Firepass 7.0.0
F5 Big-ip Local Traffic Manager
F5 Big-ip Access Policy Manager
F5 Big-ip Edge Gateway
F5 Big-ip Global Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Webaccelerator
F5 Big-ip Wan Optimization Manager
F5 Big-ip Protocol Security Module
F5 Big-ip Application Security Manager
F5 Firepass
F5 Arx
F5 Enterprise Manager
F5 Big-ip Analytics
570
VMScore
CVE-2020-27267
KEPServerEX v6.0 to v6.9, ThingWorx Kepware Server v6.8 and v6.9, ThingWorx Industrial Connectivity (all versions), OPC-Aggregator (all versions), Rockwell Automation KEPServer Enterprise, GE Digital Industrial Gateway Server v7.68.804 and v7.66, and Software Toolbox TOP Server a...
Ge Industrial Gateway Server 7.66
Ge Industrial Gateway Server 7.68.804
Ptc Kepware Kepserverex 6.0
Ptc Kepware Kepserverex 6.9
Ptc Opc-aggregator -
Ptc Thingworx Industrial Connectivity -
Ptc Thingworx Kepware Server 6.8
Ptc Thingworx Kepware Server 6.9
Rockwellautomation Kepserver Enterprise 6.6.504.0
Rockwellautomation Kepserver Enterprise 6.9.572.0
Softwaretoolbox Top Server
570
VMScore
CVE-2020-27263
KEPServerEX: v6.0 to v6.9, ThingWorx Kepware Server: v6.8 and v6.9, ThingWorx Industrial Connectivity: All versions, OPC-Aggregator: All versions, Rockwell Automation KEPServer Enterprise, GE Digital Industrial Gateway Server: v7.68.804 and v7.66, Software Toolbox TOP Server: All...
Ge Industrial Gateway Server 7.66
Ge Industrial Gateway Server 7.68.804
Ptc Kepware Kepserverex 6.0
Ptc Kepware Kepserverex 6.9
Ptc Opc-aggregator -
Ptc Thingworx Industrial Connectivity -
Ptc Thingworx Kepware Server 6.8
Ptc Thingworx Kepware Server 6.9
Rockwellautomation Kepserver Enterprise 6.6.504.0
Rockwellautomation Kepserver Enterprise 6.9.572.0
Softwaretoolbox Top Server
516
VMScore
CVE-2021-44717
Go prior to 1.16.12 and 1.17.x prior to 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion.
Golang Go
Debian Debian Linux 9.0
516
VMScore
CVE-2012-3314
IBM Tivoli Federated Identity Manager (TFIM) and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.1.1, 6.2.0, 6.2.1, and 6.2.2 allow remote malicious users to establish sessions via a crafted message that leverages (1) a signature-validation bypass for SAML messages ...
Ibm Tivoli Federated Identity Manager 6.2.1
Ibm Tivoli Federated Identity Manager 6.2.2
Ibm Tivoli Federated Identity Manager 6.1.1
Ibm Tivoli Federated Identity Manager 6.2.0
Ibm Tivoli Federated Identity Manager Business Gateway 6.2.0
Ibm Tivoli Federated Identity Manager Business Gateway 6.2.1
Ibm Tivoli Federated Identity Manager Business Gateway 6.1.1
Ibm Tivoli Federated Identity Manager Business Gateway 6.2.2
513
VMScore
CVE-2021-45046
It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with...
Apache Log4j 2.0
Apache Log4j
Intel Oneapi -
Intel Audio Development Kit -
Intel Datacenter Manager -
Intel System Debugger -
Intel Secure Device Onboard -
Intel Sensor Solution Firmware Development Kit -
Intel Computer Vision Annotation Tool -
Intel Genomics Kernel Library -
Intel System Studio -
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
197 Github repositories
9 Articles
510
VMScore
CVE-2004-0176
Multiple buffer overflows in Ethereal 0.8.13 to 0.10.2 allow remote malicious users to cause a denial of service and possibly execute arbitrary code via the (1) NetFlow, (2) IGAP, (3) EIGRP, (4) PGM, (5) IrDA, (6) BGP, (7) ISUP, or (8) TCAP dissectors.
Ethereal Group Ethereal 0.10.1
Ethereal Group Ethereal 0.9.2
Ethereal Group Ethereal 0.9.6
Ethereal Group Ethereal 0.9.5
Ethereal Group Ethereal 0.8.19
Ethereal Group Ethereal 0.10.2
Ethereal Group Ethereal 0.8.18
Ethereal Group Ethereal 0.9.14
Ethereal Group Ethereal 0.9.15
Ethereal Group Ethereal 0.9.10
Ethereal Group Ethereal 0.9.8
Ethereal Group Ethereal 0.9.16
Ethereal Group Ethereal 0.8.13
Ethereal Group Ethereal 0.9.3
Ethereal Group Ethereal 0.10
Ethereal Group Ethereal 0.9.13
Ethereal Group Ethereal 0.9.9
Ethereal Group Ethereal 0.8.14
Ethereal Group Ethereal 0.9.11
Ethereal Group Ethereal 0.9.7
Ethereal Group Ethereal 0.9.4
Ethereal Group Ethereal 0.9.1
2 EDB exploits
505
VMScore
CVE-2009-3457
Cisco ACE XML Gateway (AXG) and ACE Web Application Firewall (WAF) prior to 6.1 allow remote malicious users to obtain sensitive information via an HTTP request that lacks a handler, as demonstrated by (1) an OPTIONS request or (2) a crafted GET request, leading to a Message-hand...
Cisco Ace Web Application Firewall 6.0\\(2\\)
Cisco Ace Web Application Firewall 6.0\\(1\\)
Cisco Ace Xml Gateway 6.0\\(2\\)
Cisco Ace Xml Gateway
Cisco Ace Xml Gateway 6.0\\(0\\)
Cisco Ace Xml Gateway 6.0\\(1\\)
Cisco Ace Web Application Firewall
Cisco Ace Web Application Firewall 6.0\\(0\\)
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »