Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
network security services vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2015-2907
Mobile Devices (aka MDI) C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, have hardcoded SSH credentials, which makes it easier for remote malicious users to obtain access by leveraging knowledge of the required username and password.
Mobile Devices C4 Obd-ii Dongle Firmware
9
CVSSv2
CVE-2015-2908
Mobile Devices (aka MDI) C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, do not validate firmware updates, which allows remote malicious users to execute arbitrary code by specifying an update server.
Mobile Devices C4 Obd-ii Dongle Firmware
8.5
CVSSv2
CVE-2021-44832
Apache Log4j2 versions 2.0-beta7 up to and including 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the tar...
Apache Log4j 2.0
Apache Log4j
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Weblogic Server 12.2.1.4.0
Oracle Primavera Unifier 19.12
Oracle Weblogic Server 14.1.1.0.0
Oracle Primavera Unifier 20.12
Oracle Communications Interactive Session Recorder 6.3
Oracle Communications Interactive Session Recorder 6.4
Oracle Primavera Gateway
Oracle Retail Assortment Planning 16.0.3
Oracle Primavera Unifier 21.12
Oracle Primavera P6 Enterprise Project Portfolio Management 21.12.0.0
Oracle Primavera P6 Enterprise Project Portfolio Management
Oracle Primavera Gateway 21.12.0
Oracle Retail Fiscal Management 14.2
Oracle Siebel Ui Framework 21.12
Oracle Communications Diameter Signaling Router
Cisco Cloudcenter 4.10.0.16
Fedoraproject Fedora 34
Fedoraproject Fedora 35
34 Github repositories
4 Articles
8.5
CVSSv2
CVE-2016-6366
Buffer overflow in Cisco Adaptive Security Appliance (ASA) Software up to and including 9.4.2.3 on ASA 5500, ASA 5500-X, ASA Services Module, ASA 1000V, ASAv, Firepower 9300 ASA Security Module, PIX, and FWSM devices allows remote authenticated users to execute arbitrary code via...
Cisco Firepower Threat Defense Software 6.0.0
Cisco Firepower Threat Defense Software 6.0.1
Cisco Firepower Services Software For Asa 5.4.1
Cisco Firepower Services Software For Asa 5.4.0
Cisco Firepower Services Software For Asa 5.4.1.5
Cisco Firepower Services Software For Asa 5.4.1.3
Cisco Firepower Services Software For Asa 5.4.1.1
Cisco Firepower Services Software For Asa 5.4.1.6
Cisco Firepower Services Software For Asa 5.4.1.4
Cisco Firepower Services Software For Asa 5.4.1.7
Cisco Firepower Services Software For Asa 5.4.1.2
Cisco Pix Firewall 525 6.3
Cisco Pix Firewall 515 Base
Cisco Pix Firewall 525 Base
Cisco Pix Firewall Base
Cisco Pix Firewall 520 Base
Cisco Pix Firewall 535 Base
Cisco Pix Firewall 501 Base
Cisco Pix Firewall 515e Base
Cisco Pix Firewall 506 Base
Cisco Adaptive Security Appliance Software 9.3.2
Cisco Adaptive Security Appliance Software 9.1.1.4
1 EDB exploit
9 Github repositories
8.5
CVSSv2
CVE-2014-2119
The End User Safelist/Blocklist (aka SLBL) service in Cisco AsyncOS Software for Email Security Appliance (ESA) prior to 7.6.3-023 and 8.x prior to 8.0.1-023 and Cisco Content Security Management Appliance (SMA) prior to 7.9.1-110 and 8.x prior to 8.1.1-013 allows remote authenti...
Cisco Ironport Asyncos 8.0
Cisco Ironport Asyncos
Cisco Ironport Asyncos 8.1
Cisco Ironport Asyncos 8.0.1
Cisco Content Security Management Appliance -
Cisco Email Security Appliance Firmware -
8.5
CVSSv2
CVE-2013-5542
Cisco Adaptive Security Appliance (ASA) Software 8.4 prior to 8.4(7.2), 8.7 prior to 8.7(1.8), 9.0 prior to 9.0(3.6), and 9.1 prior to 9.1(2.8) allows remote malicious users to cause a denial of service (firewall-session disruption or device reload) via crafted ICMP packets, aka ...
Cisco Adaptive Security Appliance Software 9.0\\(2\\)
Cisco Adaptive Security Appliance Software 9.0\\(3\\)
Cisco Adaptive Security Appliance Software 9.0
Cisco Adaptive Security Appliance Software 9.0\\(1\\)
Cisco Adaptive Security Appliance Software 8.7\\(1.3\\)
Cisco Adaptive Security Appliance Software 8.7
Cisco Adaptive Security Appliance Software 8.7\\(1.1\\)
Cisco Adaptive Security Appliance Software 9.1
Cisco Adaptive Security Appliance Software 9.1\\(1\\)
Cisco Adaptive Security Appliance Software 9.1\\(1.7\\)
Cisco Adaptive Security Appliance Software 9.1\\(2\\)
Cisco Adaptive Security Appliance Software 8.4\\(1.11\\)
Cisco Adaptive Security Appliance Software 8.4\\(2\\)
Cisco Adaptive Security Appliance Software 8.4\\(4.11\\)
Cisco Adaptive Security Appliance Software 8.4\\(5\\)
Cisco Adaptive Security Appliance Software 8.4\\(2.11\\)
Cisco Adaptive Security Appliance Software 8.4\\(1\\)
Cisco Adaptive Security Appliance Software 8.4\\(3\\)
Cisco Adaptive Security Appliance Software 8.4\\(6\\)
Cisco Adaptive Security Appliance Software 8.4
8.5
CVSSv2
CVE-2012-1803
RuggedCom Rugged Operating System (ROS) 3.10.x and previous versions has a factory account with a password derived from the MAC Address field in the banner, which makes it easier for remote malicious users to obtain access by performing a calculation on this address value, and th...
Siemens Ruggedcom Rugged Operating System
1 EDB exploit
8.3
CVSSv2
CVE-2020-25681
A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow exists in the way RRSets are sorted before validating with DNSSEC data. An attacker on the network, who can forge DNS replies such as that they are accepted as valid, could use this flaw to cause a buff...
Thekelleys Dnsmasq
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 Article
8.3
CVSSv2
CVE-2020-25682
A flaw was found in dnsmasq prior to 2.83. A buffer overflow vulnerability exists in the way dnsmasq extract names from DNS packets before validating them with DNSSEC data. An attacker on the network, who can create valid DNS replies, could use this flaw to cause an overflow with...
Thekelleys Dnsmasq
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 Article
8.3
CVSSv2
CVE-2020-3118
A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software could allow an unauthenticated, adjacent malicious user to execute arbitrary code or cause a reload on an affected device. The vulnerability is due to improper validation of string input from...
Cisco Ios Xr
Cisco Ios Xr 6.5.3
Cisco Ios Xr 5.2.5
Cisco Ios Xr 6.4.2
Cisco Ios Xr 6.6.25
Cisco Ios Xr 7.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2024-20360
CVE-2021-47559
XXE
CVE-2024-5229
CVE-2021-47543
CVE-2021-47571
SSTI
CVE-2024-4978
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »