Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advanced management module vulnerabilities and exploits
(subscribe to this query)
4.9
CVSSv2
CVE-2020-25704
A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if using PERF_EVENT_IOC_SET_FILTER. A local user could use this flaw to starve the resources causing denial of service.
Linux Linux Kernel 5.10
Linux Linux Kernel
Debian Debian Linux 9.0
Starwindsoftware Starwind San \\& Nas V8r12
Starwindsoftware Command Center -
Starwindsoftware Starwind Virtual San V8
Starwindsoftware Starwind Hyperconverged Appliance -
1 Github repository
2.1
CVSSv2
CVE-2021-3744
A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows malicious users to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808.
Linux Linux Kernel 5.15
Linux Linux Kernel
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Redhat Developer Tools 1.0
Redhat Enterprise Linux For Real Time 8
Redhat Enterprise Linux For Real Time For Nfv 8
Redhat Codeready Linux Builder For Power Little Endian 8.0
Redhat Codeready Linux Builder 8.0
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.6
Redhat Enterprise Linux Server Update Services For Sap Solutions 8.6
Redhat Enterprise Linux For Ibm Z Systems Eus 8.6
Redhat Enterprise Linux Server Tus 8.6
Redhat Enterprise Linux Eus 8.6
Redhat Codeready Linux Builder For Power Little Endian Eus 8.6
Redhat Codeready Linux Builder Eus 8.6
Redhat Enterprise Linux For Real Time 8.6
Redhat Enterprise Linux Server Eus 8.6
Redhat Enterprise Linux For Power Little Endian Eus 8.6
7.1
CVSSv2
CVE-2014-0718
The produce-verbose-alert feature in Cisco IPS Software 7.1 prior to 7.1(8)E4 and 7.2 prior to 7.2(2)E4 allows remote malicious users to cause a denial of service (Analysis Engine process outage) via fragmented packets, aka Bug ID CSCui91266.
Cisco Ips Sensor Software 7.1\\(5\\)e4
Cisco Ips Sensor Software 7.1\\(6\\)e4
Cisco Ips Sensor Software 7.1\\(7\\)e4
Cisco Ips Sensor Software 7.2\\(1\\)e4
Cisco Ips Sensor Software 7.1\\(4\\)e4
7.8
CVSSv2
CVE-2014-0719
The control-plane access-list implementation in Cisco IPS Software prior to 7.1(8p2)E4 and 7.2 prior to 7.2(2)E4 allows remote malicious users to cause a denial of service (MainApp process outage) via crafted packets to TCP port 7000, aka Bug ID CSCui67394.
Cisco Ips Sensor Software 7.1\\(3\\)e4
Cisco Ips Sensor Software 7.1\\(6\\)e4
Cisco Ips Sensor Software 7.1\\(8\\)e4
Cisco Ips Sensor Software 7.2\\(1\\)e4
Cisco Ips Sensor Software
Cisco Ips Sensor Software 7.1\\(2\\)e4
Cisco Ips Sensor Software 7.1\\(4\\)e4
Cisco Ips Sensor Software 7.1\\(7\\)e4
7.1
CVSSv2
CVE-2014-0720
Cisco IPS Software 7.1 prior to 7.1(8)E4 and 7.2 prior to 7.2(2)E4 allows remote malicious users to cause a denial of service (Analysis Engine process outage) via a flood of jumbo frames, aka Bug ID CSCuh94944.
Cisco Ips Sensor Software 7.1\\(3\\)e4
Cisco Ips Sensor Software 7.1\\(4\\)e4
Cisco Ips Sensor Software 7.1\\(6\\)e4
Cisco Ips Sensor Software 7.1\\(7\\)e4
Cisco Ips Sensor Software 7.1\\(8\\)e4
Cisco Ips Sensor Software 7.2\\(1\\)e4
Cisco Ips Sensor Software 7.1\\(2\\)e4
Cisco Ips Sensor Software
8
CVSSv2
CVE-2015-20107
In Python (aka CPython) up to 3.10.8, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow malicious users to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack va...
Python Python
Netapp Snapcenter -
Netapp Ontap Select Deploy Administration Utility -
Netapp Active Iq Unified Manager -
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
2 Github repositories
4.6
CVSSv2
CVE-2022-1011
A use-after-free flaw was found in the Linux kernel’s FUSE filesystem in the way a user triggers write(). This flaw allows a local user to gain unauthorized access to data from the FUSE filesystem, resulting in privilege escalation.
Linux Linux Kernel
Linux Linux Kernel 5.17
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 8.0
Redhat Developer Tools 1.0
Redhat Enterprise Linux For Real Time 8
Redhat Enterprise Linux For Real Time For Nfv 8
Redhat Enterprise Linux For Power Little Endian 8.0
Redhat Enterprise Linux For Ibm Z Systems 8.0
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.6
Redhat Build Of Quarkus 2.0
Redhat Enterprise Linux For Real Time For Nfv Tus 8.6
Redhat Enterprise Linux For Real Time Tus 8.6
Redhat Enterprise Linux Eus 8.6
Redhat Enterprise Linux Server Aus 8.6
Redhat Enterprise Linux For Ibm Z Systems Eus 8.6
Redhat Enterprise Linux For Power Little Endian Eus 8.6
Redhat Enterprise Linux Server Update Services For Sap Solutions 8.6
Redhat Enterprise Linux Server Tus 8.6
1 Github repository
7.9
CVSSv2
CVE-2021-3752
A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The highest threat from thi...
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux For Real Time 7
Redhat Enterprise Linux For Real Time For Nfv 7
Redhat Virtualization Host 4.0
Redhat Enterprise Linux 8.0
Redhat 3scale 2.0
Fedoraproject Fedora 34
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Oracle Communications Cloud Native Core Binding Support Function 22.1.3
Oracle Communications Cloud Native Core Policy 22.2.0
Oracle Communications Cloud Native Core Network Exposure Function 22.1.1
4
CVSSv2
CVE-2009-1289
private/login.ssi in the Advanced Management Module (AMM) on the IBM BladeCenter, including the BladeCenter H with BPET36H 54, allows remote malicious users to discover the access roles and scopes of arbitrary user accounts via a modified WEBINDEX parameter.
Ibm Advanced Management Module 1.36h
Ibm Bladecenter E
Ibm Bladecenter S
Ibm Bladecenter T
Ibm Bladecenter Hs12
Ibm Bladecenter Ls21
Ibm Bladecenter Ls41
Ibm Bladecenter Ht
Ibm Bladecenter H
Ibm Bladecenter Js21
Ibm Bladecenter Hs21
Ibm Bladecenter Hs21 Xm
Ibm Bladecenter Js22
Ibm Bladecenter Hc10
Ibm Bladecenter Ls20
Ibm Bladecenter Js12
Ibm Bladecenter Hs20
Ibm Bladecenter Qs21
Ibm Bladecenter Qs22
NA
CVE-2021-3764
A memory leak flaw was found in the Linux kernel's ccp_run_aes_gcm_cmd() function that allows an malicious user to cause a denial of service. The vulnerability is similar to the older CVE-2019-18808. The highest threat from this vulnerability is to system availability.
Linux Linux Kernel 5.15
Linux Linux Kernel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »