Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
static vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2015-8729
The ascend_seek function in wiretap/ascendtext.c in the Ascend file parser in Wireshark 1.12.x prior to 1.12.9 and 2.0.x prior to 2.0.1 does not ensure the presence of a '\0' character at the end of a date string, which allows remote malicious users to cause a denial of...
Wireshark Wireshark 2.0.0
Wireshark Wireshark 1.12.4
Wireshark Wireshark 1.12.5
Wireshark Wireshark 1.12.0
Wireshark Wireshark 1.12.2
Wireshark Wireshark 1.12.1
Wireshark Wireshark 1.12.7
Wireshark Wireshark 1.12.6
Wireshark Wireshark 1.12.3
Wireshark Wireshark 1.12.8
1 EDB exploit
5.5
CVSSv3
CVE-2015-8731
The dissct_rsl_ipaccess_msg function in epan/dissectors/packet-rsl.c in the RSL dissector in Wireshark 1.12.x prior to 1.12.9 and 2.0.x prior to 2.0.1 does not reject unknown TLV types, which allows remote malicious users to cause a denial of service (out-of-bounds read and appli...
Wireshark Wireshark 2.0.0
Wireshark Wireshark 1.12.4
Wireshark Wireshark 1.12.5
Wireshark Wireshark 1.12.0
Wireshark Wireshark 1.12.2
Wireshark Wireshark 1.12.1
Wireshark Wireshark 1.12.7
Wireshark Wireshark 1.12.6
Wireshark Wireshark 1.12.3
Wireshark Wireshark 1.12.8
1 EDB exploit
5.5
CVSSv3
CVE-2015-8732
The dissect_zcl_pwr_prof_pwrprofstatersp function in epan/dissectors/packet-zbee-zcl-general.c in the ZigBee ZCL dissector in Wireshark 1.12.x prior to 1.12.9 and 2.0.x prior to 2.0.1 does not validate the Total Profile Number field, which allows remote malicious users to cause a...
Wireshark Wireshark 2.0.0
Wireshark Wireshark 1.12.4
Wireshark Wireshark 1.12.5
Wireshark Wireshark 1.12.0
Wireshark Wireshark 1.12.2
Wireshark Wireshark 1.12.1
Wireshark Wireshark 1.12.7
Wireshark Wireshark 1.12.6
Wireshark Wireshark 1.12.3
Wireshark Wireshark 1.12.8
1 EDB exploit
8.1
CVSSv3
CVE-2022-20773
A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote malicious user to impersonate a VA. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vul...
Cisco Umbrella
1 Github repository
1 Article
7.5
CVSSv3
CVE-2020-11719
An issue exists in Programi Bilanc build 007 release 014 31.01.2020 and possibly below. It relies on broken encryption with a weak and guessable static encryption key.
Bilanc Bilanc
9.8
CVSSv3
CVE-2020-8995
Programi Bilanc Build 007 Release 014 31.01.2020 supplies a .exe file containing several hardcoded credentials to different servers that allow remote malicious users to gain access to the complete infrastructure including the website, update server, and external issue tracking to...
Bilanc Bilanc
9.8
CVSSv3
CVE-2019-1723
A vulnerability in the Cisco Common Services Platform Collector (CSPC) could allow an unauthenticated, remote malicious user to access an affected device by using an account that has a default, static password. This account does not have administrator privileges. The vulnerabilit...
Cisco Common Services Platform Collector
NA
CVE-2012-5564
android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users to overwrite arbitrary files via a symlink attack on /tmp/adb.log.
Google Android Debug Bridge -
NA
CVE-2024-24681
An issue exists in Yealink Configuration Encrypt Tool (AES version) and Yealink Configuration Encrypt Tool (RSA version prior to 1.2). There is a single hardcoded key (used to encrypt provisioning documents) across customers' installations.
9.8
CVSSv3
CVE-2018-0150
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, remote malicious user to log in to a device running an affected release of Cisco IOS XE Software with the default username and password that are used at initial boot, aka a Static Credential Vulnerability. T...
Cisco Ios Xe 16.5.1
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »