Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shadow vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2021-40960
Galera WebTemplate 1.0 is affected by a directory traversal vulnerability that could reveal information from /etc/passwd and /etc/shadow.
Galera Galera Webtemplate 1.0
543
VMScore
CVE-2021-3653
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the "int_ctl" field...
Linux Linux Kernel 5.14
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Debian Debian Linux 9.0
1 Github repository
393
VMScore
CVE-2021-40490
A race condition exists in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel up to and including 5.13.13.
Linux Linux Kernel
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Debian Debian Linux 11.0
Netapp Aff A250 Firmware -
Netapp Fas 500f Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Netapp H610c Firmware -
Netapp H610s Firmware -
Netapp H615c Firmware -
187
VMScore
CVE-2021-38198
arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel prior to 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.
Linux Linux Kernel
Debian Debian Linux 9.0
294
VMScore
CVE-2021-38199
fs/nfs/nfs4client.c in the Linux kernel prior to 5.13.4 has incorrect connection-setup ordering, which allows operators of remote NFSv4 servers to cause a denial of service (hanging of mounts) by arranging for those servers to be unreachable during trunking detection.
Linux Linux Kernel
Netapp Hci Bootstrap Os -
Netapp Hci Management Node -
Netapp Solidfire -
Netapp Element Software -
Debian Debian Linux 9.0
Debian Debian Linux 11.0
409
VMScore
CVE-2021-38204
drivers/usb/host/max3421-hcd.c in the Linux kernel prior to 5.13.6 allows physically proximate malicious users to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations.
Linux Linux Kernel
Debian Debian Linux 9.0
187
VMScore
CVE-2021-38205
drivers/net/ethernet/xilinx/xilinx_emaclite.c in the Linux kernel prior to 5.13.3 makes it easier for malicious users to defeat an ASLR protection mechanism because it prints a kernel pointer (i.e., the real IOMEM pointer).
Linux Linux Kernel
Debian Debian Linux 9.0
642
VMScore
CVE-2021-38160
In drivers/char/virtio_console.c in the Linux kernel prior to 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is not a vulnerability in a...
Linux Linux Kernel
Netapp Hci Bootstrap Os -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Element Software -
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Redhat Enterprise Linux 8.0
187
VMScore
CVE-2021-3655
A vulnerability was found in the Linux kernel in versions prior to v5.14-rc1. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory.
Linux Linux Kernel 5.14
Linux Linux Kernel
Redhat Enterprise Linux 8.0
Debian Debian Linux 9.0
187
VMScore
CVE-2021-3679
A lack of CPU resource in the Linux kernel tracing module functionality in versions before 5.14-rc3 was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing ...
Linux Linux Kernel 5.14
Linux Linux Kernel
Redhat Enterprise Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »