Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security directory server vulnerabilities and exploits
(subscribe to this query)
3.6
CVSSv2
CVE-2019-1794
A vulnerability in the search path processing of Cisco Directory Connector could allow an authenticated, local malicious user to load a binary of their choosing. The vulnerability is due to uncontrolled search path elements. An attacker could exploit this vulnerability by placing...
Cisco Meeting Server 2.2
4.3
CVSSv2
CVE-2016-5765
Administrative Server in Micro Focus Host Access Management and Security Server (MSS) and Reflection for the Web (RWeb) and Reflection Security Gateway (RSG) and Reflection ZFE (ZFE) allows remote unauthenticated malicious users to read arbitrary files via a specially crafted URL...
Microfocus Host Access Management And Security Server 12.3
Microfocus Reflection Zfe 2.0.0.52
Microfocus Host Access Management And Security Server 12.2
Microfocus Reflection For The Web 12.3
Microfocus Reflection For The Web 12.1
Microfocus Reflection For The Web 12.2
Microfocus Reflection Zfe 1.4.0.14
Microfocus Reflection Zfe 2.0.1.18
Microfocus Reflection Security Gateway 12.1
7.5
CVSSv2
CVE-2022-23457
ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library. Prior to version 2.3.0.0, the default implementation of `Validator.getValidDirectoryPath(String, String, File, boolean)` may incorrectly treat the tested input string as a ...
Owasp Enterprise Security Api
Oracle Weblogic Server 12.2.1.3.0
Oracle Weblogic Server 12.2.1.4.0
Oracle Weblogic Server 14.1.1.0.0
Netapp Oncommand Workflow Automation -
Netapp Active Iq Unified Manager -
4
CVSSv2
CVE-2019-19344
There is a use-after-free issue in all samba 4.9.x versions prior to 4.9.18, all samba 4.10.x versions prior to 4.10.12 and all samba 4.11.x versions prior to 4.11.5, essentially due to a call to realloc() while other local variables still point at the original buffer.
Samba Samba
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 19.10
Synology Skynas -
Synology Diskstation Manager 6.2
Synology Directory Server -
Synology Router Manager 1.2
Opensuse Leap 15.1
9.3
CVSSv2
CVE-2020-1472
An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC). An attacker who successfully exploited the vulnerability could run a specially crafted...
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2019 -
Microsoft Windows Server 2004 -
Microsoft Windows Server 20h2 -
Microsoft Windows Server 1903
Microsoft Windows Server 1909
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Opensuse Leap 15.1
Opensuse Leap 15.2
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Synology Directory Server
Samba Samba
Debian Debian Linux 9.0
Oracle Zfs Storage Appliance Kit 8.8
1 Metasploit module
160 Github repositories
18 Articles
7.1
CVSSv2
CVE-2012-4643
The DHCP server on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 7.0 prior to 7.2(5.8), 7.1 prior to 7.2(5.8), 7.2 prior to 7.2(5.8), 8.0 prior to 8.0(5.28), 8.1 prior to 8.1(...
Cisco Adaptive Security Appliance Software 7.0
Cisco Adaptive Security Appliance Software 7.0(0)
Cisco Adaptive Security Appliance Software 7.0(1)
Cisco Adaptive Security Appliance Software 7.0(2)
Cisco Adaptive Security Appliance Software 7.0(4)
Cisco Adaptive Security Appliance Software 7.0(5)
Cisco Adaptive Security Appliance Software 7.0(5.2)
Cisco Adaptive Security Appliance Software 7.1
Cisco Adaptive Security Appliance Software 7.1(2)
Cisco Adaptive Security Appliance Software 7.1(2.5)
Cisco Adaptive Security Appliance Software 7.1(2.27)
Cisco Adaptive Security Appliance Software 7.1(2.48)
Cisco Adaptive Security Appliance Software 7.1(2.49)
Cisco Adaptive Security Appliance Software 7.1(5)
Cisco Adaptive Security Appliance Software 7.2
Cisco Adaptive Security Appliance Software 7.2(1)
Cisco Adaptive Security Appliance Software 7.2(1.22)
Cisco Adaptive Security Appliance Software 7.2(2)
Cisco Adaptive Security Appliance Software 7.2(2.5)
Cisco Adaptive Security Appliance Software 7.2(2.7)
Cisco Adaptive Security Appliance Software 7.2(2.8)
Cisco Adaptive Security Appliance Software 7.2(2.10)
5
CVSSv2
CVE-2005-1242
Directory traversal vulnerability in the third party tool from Bsafe, as used to secure the iSeries AS/400 FTP server, allows remote malicious users to access arbitrary files, including those from qsys.lib, via ".." sequences in a GET request.
Bsafe Global Security
5
CVSSv2
CVE-2005-1239
Directory traversal vulnerability in the third party tool from Raz-Lee, as used to secure the iSeries AS/400 FTP server, allows remote malicious users to access arbitrary files, including those from qsys.lib, via ".." sequences in a GET request.
Raz-lee Security+++
5
CVSSv2
CVE-2005-3490
Directory traversal vulnerability in the web server in Asus Video Security 3.5.0.0 and previous versions allows remote malicious users to read arbitrary files via "../" or "..\" sequences in the URL.
Asus Video Security Online
2.6
CVSSv2
CVE-2019-14907
All samba versions 4.9.x prior to 4.9.18, 4.10.x prior to 4.10.12 and 4.11.x prior to 4.11.5 have an issue where if it is set with "log level = 3" (or above) then the string obtained from the client, after a failed character conversion, is printed. Such strings can be p...
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Samba Samba
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Redhat Storage 3.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 19.10
Synology Skynas -
Synology Diskstation Manager 6.2
Synology Directory Server -
Synology Router Manager 1.2
Debian Debian Linux 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »