Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
discovery vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-31129
The Contiki-NG operating system versions 4.8 and prior can be triggered to dereference a NULL pointer in the message handling code for IPv6 router solicitiations. Contiki-NG contains an implementation of IPv6 Neighbor Discovery (ND) in the module `os/net/ipv6/uip-nd6.c`. The ND p...
Contiki-ng Contiki-ng
8.8
CVSSv3
CVE-2023-29849
Bang Resto 1.0 exists to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter.
Hockeycomputindo Bang Resto 1.0
4.3
CVSSv3
CVE-2022-43699
OX App Suite prior to 7.10.6-rev30 allows SSRF because e-mail account discovery disregards the deny-list and thus can be attacked by an adversary who controls the DNS records of an external domain (found in the host part of an e-mail address).
Open-xchange Ox App Suite 7.10.6
Open-xchange Ox App Suite
5.5
CVSSv3
CVE-2021-3684
A vulnerability was found in OpenShift Assisted Installer. During generation of the Discovery ISO, image pull secrets were leaked as plaintext in the installation logs. An authenticated user could exploit this by re-using the image pull secret to pull container images from the re...
Redhat Openshift Assisted Installer
Redhat Openshift Container Platform 4.6
9.8
CVSSv3
CVE-2023-1097
Baicells EG7035-M11 devices with firmware through BCE-ODU-1.0.8 are vulnerable to improper code exploitation via HTTP GET command injections. Commands are executed using pre-login execution and executed with root permissions. The following methods have been tested and validated b...
Baicells Eg7035-m11 Firmware
6.5
CVSSv3
CVE-2023-20089
A vulnerability in the Link Layer Discovery Protocol (LLDP) feature for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) Mode could allow an unauthenticated, adjacent malicious user to cause a memory leak, which could result in an unexpected rel...
Cisco Nx-os 15.2\\(1g\\)
Cisco Nx-os 15.2\\(2e\\)
Cisco Nx-os 15.2\\(2f\\)
Cisco Nx-os 15.2\\(2g\\)
Cisco Nx-os 15.2\\(2h\\)
Cisco Nx-os 15.2\\(3e\\)
Cisco Nx-os 15.2\\(3f\\)
Cisco Nx-os 15.2\\(3g\\)
Cisco Nx-os 15.2\\(4d\\)
Cisco Nx-os 15.2\\(4e\\)
Cisco Nx-os 15.2\\(4f\\)
Cisco Nx-os 15.2\\(5c\\)
Cisco Nx-os 15.2\\(5d\\)
Cisco Nx-os 15.2\\(5e\\)
Cisco Nx-os 16.0\\(1g\\)
Cisco Nx-os 16.0\\(1j\\)
7.5
CVSSv3
CVE-2023-21700
Windows iSCSI Discovery Service Denial of Service Vulnerability
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2019 -
Microsoft Windows Server 2022 -
Microsoft Windows 10 1809
Microsoft Windows 10 20h2
Microsoft Windows 11 21h2
Microsoft Windows 10 21h2
Microsoft Windows 11 22h2
Microsoft Windows 10 22h2
Microsoft Windows 10 1607
Microsoft Windows 10
9.8
CVSSv3
CVE-2023-21803
Windows iSCSI Discovery Service Remote Code Execution Vulnerability
Microsoft Windows Server 2008 -
Microsoft Windows 10 1809
Microsoft Windows 10 20h2
Microsoft Windows 10 1607
Microsoft Windows 10 21h2
Microsoft Windows 10 22h2
Microsoft Windows 10
4.9
CVSSv3
CVE-2022-42439
IBM App Connect Enterprise 11.0.0.17 up to and including 11.0.0.19 and 12.0.4.0 and 12.0.5.0 contains an unspecified vulnerability in the Discovery Connector nodes which may cause a 3rd party system’s credentials to be exposed to a privileged attacker. IBM X-Force ID: 2382...
Ibm App Connect Enterprise
Ibm App Connect Enterprise 12.0.4.0
Ibm App Connect Enterprise 12.0.5.0
Ibm App Connect Enterprise Certified Container 4.1
Ibm App Connect Enterprise Certified Container 4.2
Ibm App Connect Enterprise Certified Container 5.0
Ibm App Connect Enterprise Certified Container 5.1
Ibm App Connect Enterprise Certified Container 5.2
Ibm App Connect Enterprise Certified Container 6.0
7.5
CVSSv3
CVE-2022-44018
In Softing uaToolkit Embedded prior to 1.40.1, a malformed PubSub discovery announcement message can cause a NULL pointer dereference or out-of-bounds memory access in the subscriber application.
Softing Uatoolkit Embedded
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »