Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wave vulnerabilities and exploits
(subscribe to this query)
294
VMScore
CVE-2020-10137
Z-Wave devices based on Silicon Labs 700 series chipsets using S2 do not adequately authenticate or encrypt FIND_NODE_IN_RANGE frames, allowing a remote, unauthenticated malicious user to inject a FIND_NODE_IN_RANGE frame with an invalid random payload, denying service by blockin...
Silabs Uzb-7 7.00
Silabs 700 Series Firmware
801
VMScore
CVE-2021-35522
A Buffer Overflow in Thrift command handlers in IDEMIA Morpho Wave Compact and VisionPass devices prior to 2.6.2, Sigma devices prior to 4.9.4, and MA VP MD devices prior to 4.9.7 allows remote malicious users to achieve code execution, denial of services, and information disclos...
Idemia Morphowave Compact Mdpi Firmware
Idemia Morphowave Compact Mdpi-m Firmware
Idemia Visionpass Mdpi Firmware
Idemia Visionpass Mdpi-m Firmware
Idemia Visionpass Md Firmware -
Idemia Morphowave Compact Md Firmware -
Idemia Sigma Lite Firmware -
Idemia Sigma Lite\\+ Firmware -
Idemia Sigma Wide Firmware -
Idemia Sigma Extreme Firmware -
Idemia Ma Vp Md Firmware -
294
VMScore
CVE-2020-9061
Z-Wave devices using Silicon Labs 500 and 700 series chipsets, including but not likely limited to the SiLabs UZB-7 version 7.00, ZooZ ZST10 version 6.04, Aeon Labs ZW090-A version 3.95, and Samsung STH-ETH-200 version 6.04, are susceptible to denial of service via malformed rout...
Aeotec Zw090-a 3.95
Samsung Sth-eth-200 6.04
Silabs Uzb-7 7.00
Zooz Zst10 6.04
Silabs 500 Series Firmware
Silabs 700 Series Firmware -
668
VMScore
CVE-2015-8965
Rogue Wave JViews prior to 8.8 patch 21 and 8.9 before patch 1 allows remote malicious users to execute arbitrary Java code that exists in the classpath, such as test code or administration code. The issue exists because the ilog.views.faces.IlvFacesController servlet in jviews-f...
Perforce Jviews
Perforce Jviews 8.9
Oracle Data Integrator 12.2.1.3.0
Oracle Data Integrator 12.2.1.4.0
1 Article
518
VMScore
CVE-2021-21974
OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG) has a heap-overflow vulnerability. A malicious actor residing within the same network segment as ESXi who has access to port 427 may be able to trigger the he...
Vmware Cloud Foundation
Vmware Esxi 6.5
Vmware Esxi 6.7
Vmware Esxi 7.0.0
5 Github repositories
4 Articles
801
VMScore
CVE-2015-3974
EasyIO EasyIO-30P-SF controllers with firmware prior to 0.5.21 and 2.x prior to 2.0.5.21, as used in Accutrol, Bar-Tech Automation, Infocon/EasyIO, Honeywell Automation India, Johnson Controls, SyxthSENSE, Transformative Wave Technologies, Tridium Asia Pacific, and Tridium Europe...
Easyio Easyio-30p-sf Firmware
Easyio Easyio-30p-sf
676
VMScore
CVE-2001-0166
Macromedia Shockwave Flash plugin version 8 and previous versions allows remote malicious users to cause a denial of service via malformed tag length specifiers in a SWF file.
Macromedia Shockwave Flash Plugin
543
VMScore
CVE-2020-9060
Z-Wave devices based on Silicon Labs 500 series chipsets using S2, including but likely not limited to the ZooZ ZST10 version 6.04, ZooZ ZEN20 version 5.03, ZooZ ZEN25 version 5.03, Aeon Labs ZW090-A version 3.95, and Fibaro FGWPB-111 version 4.3, are susceptible to denial of ser...
Silabs 500 Series Firmware
Aeotec Zw090-a 3.95
Zooz Zst10 6.04
Zooz Zen20 5.03
Zooz Zen25 5.03
Fibaro Fgwpb-111 4.3
NA
CVE-2023-49914
InteraXon Muse 2 devices allow remote malicious users to cause a denial of service (incorrect Muse App report of an outstanding, calm meditation state) via a 480 MHz RF carrier that is modulated by a "false" brain wave, aka a Brain-Hack attack. For example, the Muse App...
Choosemuse Muse 2 Firmware -
169
VMScore
CVE-2021-3011
An electromagnetic-wave side-channel issue exists on NXP SmartMX / P5x security microcontrollers and A7x secure authentication microcontrollers, with CryptoLib through v2.9. It allows malicious users to extract the ECDSA private key after extensive physical access (and consequent...
Yubico Yubikey Neo -
Nxp 3a081 -
Nxp J2a081 -
Nxp J3a041 -
Nxp J3d145 M59 -
Nxp J2d145 M59 -
Nxp J3d120 M60 -
Nxp J3d082 M60 -
Nxp J2d120 M60 -
Nxp J2d082 M60 -
Nxp J3d081 M59 -
Nxp J2d081 M59 -
Nxp J3d081 M61 -
Nxp J2d081 M61 -
Nxp J3d081 M59 Df -
Nxp J3d081 M61 Df -
Nxp J3e081 M64 -
Nxp J3e081 M66 -
Nxp J2e081 M64 -
Nxp J3e041 M66 -
Nxp J3e016 M66 -
Nxp J3e016 M64 -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »