Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unified intelligence center vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2015-1794
The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL 1.0.2 prior to 1.0.2e allows remote servers to cause a denial of service (segmentation fault) via a zero p value in an anonymous Diffie-Hellman (DH) ServerKeyExchange message.
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2d
1 Article
5
CVSSv2
CVE-2015-3193
The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 prior to 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote malicious users to obt...
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2d
Nodejs Node.js
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
1 Github repository
5.8
CVSSv2
CVE-2021-29425
In Apache Commons IO prior to 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../foo", or "\\..\foo", the result would be the same value, thus possibly providing access to files in the parent directory, but not furt...
Apache Commons Io 2.2
Apache Commons Io 2.3
Apache Commons Io 2.4
Apache Commons Io 2.5
Apache Commons Io 2.6
Debian Debian Linux 9.0
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Integration Bus 13.0
Oracle Flexcube Core Banking 5.2.0
Oracle Solaris Cluster 4.0
Oracle Access Manager 11.1.2.3.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Access Manager 12.2.1.3.0
Oracle Application Testing Suite 13.3.0.1
Oracle Retail Order Broker 16.0
Oracle Banking Platform 2.6.2
Oracle Primavera Unifier 18.8
Oracle Primavera Unifier
Oracle Agile Plm 9.3.6
Oracle Banking Digital Experience 18.3
Oracle Banking Digital Experience 19.1
10
CVSSv2
CVE-2010-0581
Unspecified vulnerability in the SIP implementation in Cisco IOS 12.3 and 12.4 allows remote malicious users to execute arbitrary code via a malformed SIP message, aka Bug ID CSCsz89904, the "SIP Packet Parsing Arbitrary Code Execution Vulnerability."
Cisco Ios 12.3t
Cisco Ios 12.3xd
Cisco Ios 12.3xr
Cisco Ios 12.3xu
Cisco Ios 12.3ym
Cisco Ios 12.3yq
Cisco Ios 12.3jk
Cisco Ios 12.4
Cisco Ios 12.4xd
Cisco Ios 12.4xp
Cisco Ios 12.4yg
Cisco Ios 12.3xz
Cisco Ios 12.3xi
Cisco Ios 12.3xj
Cisco Ios 12.3xk
Cisco Ios 12.3xy
Cisco Ios 12.3yf
Cisco Ios 12.3yu
Cisco Ios 12.3yx
Cisco Ios 12.4mda
Cisco Ios 12.4mr
Cisco Ios 12.4t
7.8
CVSSv2
CVE-2010-0579
The SIP implementation in Cisco IOS 12.3 and 12.4 allows remote malicious users to cause a denial of service (device reload) via a malformed SIP message, aka Bug ID CSCtb93416, the "SIP Message Handling Denial of Service Vulnerability."
Cisco Ios 12.3jk
Cisco Ios 12.3xk
Cisco Ios 12.3xl
Cisco Ios 12.3xq
Cisco Ios 12.3yg
Cisco Ios 12.3yk
Cisco Ios 12.3yz
Cisco Ios 12.3za
Cisco Ios 12.4xb
Cisco Ios 12.4xd
Cisco Ios 12.4ye
Cisco Ios 12.4yg
Cisco Ios 12.3t
Cisco Ios 12.3xd
Cisco Ios 12.3xr
Cisco Ios 12.3xu
Cisco Ios 12.3ym
Cisco Ios 12.3yq
Cisco Ios 12.4
Cisco Ios 12.4gc
Cisco Ios 12.4xp
Cisco Ios 12.4xr
10
CVSSv2
CVE-2010-0580
Unspecified vulnerability in the SIP implementation in Cisco IOS 12.3 and 12.4 allows remote malicious users to execute arbitrary code via a malformed SIP message, aka Bug ID CSCsz48680, the "SIP Message Processing Arbitrary Code Execution Vulnerability."
Cisco Ios 12.3xj
Cisco Ios 12.3xk
Cisco Ios 12.3yf
Cisco Ios 12.3yg
Cisco Ios 12.3yx
Cisco Ios 12.3yz
Cisco Ios 12.4t
Cisco Ios 12.4xa
Cisco Ios 12.4yd
Cisco Ios 12.4ye
Cisco Ios 12.3jk
Cisco Ios 12.3t
Cisco Ios 12.3xl
Cisco Ios 12.3xq
Cisco Ios 12.3yk
Cisco Ios 12.3ym
Cisco Ios 12.3za
Cisco Ios 12.4
Cisco Ios 12.4xb
Cisco Ios 12.4xd
Cisco Ios 12.4xp
Cisco Ios 12.4yg
4.3
CVSSv2
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.
Redhat Hibernate Validator
Redhat Hibernate Validator 6.1.0
Redhat Single Sign-on -
Redhat Jboss Enterprise Application Platform -
Redhat Jboss Data Grid -
Redhat Openshift Application Runtimes -
Redhat Fuse 1.0
Redhat Jboss Enterprise Application Platform 7.2
Redhat Jboss Enterprise Application Platform 7.3
Netapp Active Iq Unified Manager -
Netapp Element -
Netapp Snapcenter Plug-in -
Netapp Management Services For Element Software And Netapp Hci -
Oracle Flexcube Investor Servicing 12.3.0
Oracle Flexcube Investor Servicing 12.1.0
Oracle Solaris 11
Oracle Flexcube Private Banking 12.1.0
Oracle Insurance Policy Administration J2ee 10.2.0
Oracle Flexcube Private Banking 12.0.0
Oracle Flexcube Investor Servicing 12.0.4
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Integration Bus 13.0
7.1
CVSSv2
CVE-2009-2873
Cisco IOS 12.0 up to and including 12.4, when IP-based tunnels and the Cisco Express Forwarding feature are enabled, allows remote malicious users to cause a denial of service (device reload) via malformed packets, aka Bug ID CSCsx70889.
Cisco Ios 12.0db
Cisco Ios 12.0
Cisco Ios 12.0sy
Cisco Ios 12.0sz
Cisco Ios 12.0t
Cisco Ios 12.0xg
Cisco Ios 12.0xh
Cisco Ios 12.0xq
Cisco Ios 12.0xr
Cisco Ios 12.1da
Cisco Ios 12.1db
Cisco Ios 12.1eu
Cisco Ios 12.1ew
Cisco Ios 12.1xa
Cisco Ios 12.1xb
Cisco Ios 12.1xj
Cisco Ios 12.1xl
Cisco Ios 12.1xu
Cisco Ios 12.1xv
Cisco Ios 12.1yc
Cisco Ios 12.1yd
Cisco Ios 12.2bx
7.1
CVSSv2
CVE-2009-2863
Race condition in the Firewall Authentication Proxy feature in Cisco IOS 12.0 up to and including 12.4 allows remote malicious users to bypass authentication, or bypass the consent web page, via a crafted request, aka Bug ID CSCsy15227.
Cisco Ios 12.1ex
Cisco Ios 12.1t
Cisco Ios 12.1yb
Cisco Ios 12.1yd
Cisco Ios 12.2dd
Cisco Ios 12.2ex
Cisco Ios 12.2ixb
Cisco Ios 12.2ixc
Cisco Ios 12.2sec
Cisco Ios 12.2sed
Cisco Ios 12.2sra
Cisco Ios 12.2srb
Cisco Ios 12.2sxe
Cisco Ios 12.2sxf
Cisco Ios 12.2xe
Cisco Ios 12.2xg
Cisco Ios 12.2xt
Cisco Ios 12.2xv
Cisco Ios 12.2yh
Cisco Ios 12.2yl
Cisco Ios 12.2ym
Cisco Ios 12.2zd
7.8
CVSSv2
CVE-2009-2871
Unspecified vulnerability in Cisco IOS 12.2 and 12.4, when SSLVPN sessions, SSH sessions, or IKE encrypted nonces are enabled, allows remote malicious users to cause a denial of service (device reload) via a crafted encrypted packet, aka Bug ID CSCsq24002.
Cisco Ios 12.2xna
Cisco Ios 12.2xnb
Cisco Ios 12.4xf
Cisco Ios 12.4xj
Cisco Ios 12.4xz
Cisco Ios 12.4sw
Cisco Ios 12.4t
Cisco Ios 12.4xw
Cisco Ios 12.4xy
Cisco Ios 12.4md
Cisco Ios 12.4mr
Cisco Ios 12.4xr
Cisco Ios 12.4xv
Cisco Ios 12.2xnc
Cisco Ios 12.2xnd
Cisco Ios 12.4xk
Cisco Ios 12.4xq
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »