Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2019-0724
An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0686.
Microsoft Exchange Server 2016
Microsoft Exchange Server 2010
Microsoft Exchange Server 2013
Microsoft Exchange Server 2019
2 Metasploit modules
1 Article
1000
VMScore
CVE-2019-1663
A vulnerability in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and Cisco RV215W Wireless-N VPN Router could allow an unauthenticated, remote malicious user to execute arbitrary code on an affect...
Cisco Rv110w Firmware
Cisco Rv130w Firmware
Cisco Rv215w Firmware
3 EDB exploits
3 Github repositories
1 Article
1000
VMScore
CVE-2018-4404
In iOS prior to 11.4 and macOS High Sierra prior to 10.13.5, a memory corruption issue exists and was addressed with improved memory handling.
Apple Iphone Os
Apple Mac Os X
2 Metasploit modules
1000
VMScore
CVE-2018-1160
Netatalk prior to 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution.
Netatalk Netatalk
Synology Skynas -
Synology Diskstation Manager
Synology Router Manager
Synology Vs960hd Firmware -
Debian Debian Linux 9.0
1 EDB exploit
3 Github repositories
1000
VMScore
CVE-2018-19864
NUUO NVRmini2 Network Video Recorder firmware up to and including 3.9.1 allows remote malicious users to execute arbitrary code or cause a denial of service (buffer overflow), resulting in ability to read camera feeds or reconfigure the device.
Nuuo Nvrmini2 Firmware
1 EDB exploit
1000
VMScore
CVE-2018-17153
It exists that the Western Digital My Cloud device prior to 2.30.196 is affected by an authentication bypass vulnerability. An unauthenticated attacker can exploit this vulnerability to authenticate as an admin user without needing to provide a password, thereby gaining full cont...
Western Digital My Cloud Wdbctl0020hwt Firmware
Western Digital My Cloud Pr4100
Western Digital My Cloud Pr2100 Firmware
Western Digital My Cloud Mirror Gen 2 Firmware
Western Digital My Cloud Mirror Firmware
Western Digital My Cloud Ex4100
Western Digital My Cloud Ex4 Firmware
Western Digital My Cloud Ex2100 Firmware
Western Digital My Cloud Ex2 Ultra Firmware
Western Digital My Cloud Ex2 Firmware
Western Digital My Cloud Dl4100 Firmware
Western Digital My Cloud Dl2100
1 Metasploit module
1 Article
1000
VMScore
CVE-2015-9266
The web management interface of Ubiquiti airMAX, airFiber, airGateway and EdgeSwitch XP (formerly TOUGHSwitch) allows an unauthenticated malicious user to upload and write arbitrary files using directory traversal techniques. An attacker can exploit this vulnerability to gain roo...
Ui Airmax Ac Firmware 7.1.3
Ui Airmax M Xm Firmware
Ui Airmax M Xw Firmware
Ui Airmax M Ti Firmware
Ui Airgateway Firmware
Ui Airfiber Af24 Firmware
Ui Airfiber Af24hd Firmware
Ui Af5x Firmware
Ui Af5 Firmware
Ubnt Airos 4 Xs5
Ubnt Airos 4 Xs2
Ubnt Edgeswitch Xp Firmware
1 EDB exploit
1000
VMScore
CVE-2018-16158
Eaton Power Xpert Meter 4000, 6000, and 8000 devices prior to 13.4.0.10 have a single SSH private key across different customers' installations and do not properly restrict access to this key, which makes it easier for remote malicious users to perform SSH logins (to uid 0) ...
Eaton Power Xpert Meter 4000 Firmware
Eaton Power Xpert Meter 6000 Firmware
Eaton Power Xpert Meter 8000 Firmware
1000
VMScore
CVE-2018-14933
upgrade_handle.php on NUUO NVRmini devices allows Remote Command Execution via shell metacharacters in the uploaddir parameter for a writeuploaddir command.
Nuuo Nvrmini Firmware 2016
1 EDB exploit
1000
VMScore
CVE-2018-14417
A command injection vulnerability was found in the web administration console in SoftNAS Cloud prior to 4.0.3. In particular, the snserv script did not sanitize the 'recentVersion' parameter from the snserv endpoint, allowing an unauthenticated malicious user to execute...
Softnas Cloud
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »