Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redhat fedora core vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2005-0754
Kommander in KDE 3.2 through KDE 3.4.0 executes data files without confirmation from the user, which allows remote malicious users to execute arbitrary code.
Conectiva Linux 9.0
Kde Quanta 3.1
Conectiva Linux 10.0
Kde Kde 3.3.2
Ubuntu Ubuntu Linux 4.1
Kde Kde 3.3.1
Kde Kde 3.2.2
Kde Kde 3.2.1
Ubuntu Ubuntu Linux 5.04
Kde Kde 3.4
Kde Kde 3.3
Kde Kde 3.2
Kde Kde 3.2.3
Redhat Fedora Core Core 3.0
Gentoo Linux
694
VMScore
CVE-2019-9515
Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service. The attacker sends a stream of SETTINGS frames to the peer. Since the RFC requires that the peer reply with one acknowledgement per SETTINGS frame, an empty SETTINGS frame ...
Apple Swiftnio
Apache Traffic Server
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Synology Skynas -
Synology Diskstation Manager 6.2
Synology Vs960hd Firmware -
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.0
Opensuse Leap 15.1
Redhat Software Collections 1.0
Redhat Jboss Core Services 1.0
Redhat Enterprise Linux 8.0
Redhat Jboss Enterprise Application Platform 7.2.0
Redhat Single Sign-on 7.3
Redhat Openshift Container Platform 4.1
Redhat Quay 3.0.0
Redhat Openshift Service Mesh 1.0
685
VMScore
CVE-2004-0595
The strip_tags function in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, does not filter null (\0) characters within tag names when restricting input to allowed tags, which allows dangerous tags to be processed by web browsers such as Internet Explorer and Safari, which ignore nul...
Redhat Fedora Core Core 2.0
Trustix Secure Linux 2.0
Redhat Fedora Core Core 1.0
Avaya Converged Communications Server 2.0
Trustix Secure Linux 1.5
Trustix Secure Linux 2.1
Avaya S8500 R2.0.1
Php Php 4.2.0
Php Php 4.1.0
Php Php 4.0.4
Php Php 4.3.0
Php Php 4.0.5
Php Php 5.0
Avaya S8300 R2.0.0
Php Php 4.3.6
Avaya Integrated Management
Php Php 4.3.7
Php Php 4.2.2
Php Php 4.3.2
Php Php 4.0.7
Php Php 4.0.2
Php Php 4.3.3
1 EDB exploit
NA
CVE-2023-3269
A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtual memory areas (VMAs) is incorrect, leading to use-after-free problems. This issue can be successfully exploited to execute arbitrary kernel code, esc...
Linux Linux Kernel 6.4
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 8.0
Fedoraproject Fedora 37
Redhat Enterprise Linux 9.0
Fedoraproject Fedora 38
2 Github repositories
694
VMScore
CVE-2019-9511
Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and...
Apple Swiftnio
Apache Traffic Server
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Synology Skynas -
Synology Diskstation Manager 6.2
Synology Vs960hd Firmware -
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.0
Opensuse Leap 15.1
Redhat Software Collections 1.0
Redhat Jboss Core Services 1.0
Redhat Enterprise Linux 8.0
Redhat Jboss Enterprise Application Platform 7.2.0
Redhat Quay 3.0.0
Redhat Openshift Service Mesh 1.0
Redhat Jboss Enterprise Application Platform 7.3.0
Oracle Graalvm 19.2.0
1 Github repository
1 Article
695
VMScore
CVE-2019-9513
Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consu...
Apple Swiftnio
Apache Traffic Server
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 30
Synology Skynas -
Synology Diskstation Manager 6.2
Synology Vs960hd Firmware -
Fedoraproject Fedora 29
Opensuse Leap 15.0
Opensuse Leap 15.1
Redhat Software Collections 1.0
Redhat Jboss Core Services 1.0
Redhat Enterprise Linux 8.0
Redhat Jboss Enterprise Application Platform 7.2.0
Redhat Quay 3.0.0
Redhat Openshift Service Mesh 1.0
Redhat Jboss Enterprise Application Platform 7.3.0
Oracle Graalvm 19.2.0
1 Article
1000
VMScore
CVE-2004-0989
Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote malicious users to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data...
Xmlsoft Libxml2 2.6.11
Xmlsoft Libxml2 2.6.13
Xmlsoft Libxml2 2.6.7
Xmlsoft Libxml2 2.6.14
Xmlstarlet Command Line Xml Toolkit 0.9.1
Xmlsoft Libxml2 2.6.8
Xmlsoft Libxml2 2.5.11
Xmlsoft Libxml 1.8.17
Xmlsoft Libxml2 2.6.12
Xmlsoft Libxml2 2.6.9
Xmlsoft Libxml2 2.6.6
Redhat Fedora Core Core 2.0
Trustix Secure Linux 2.0
Ubuntu Ubuntu Linux 4.1
Trustix Secure Linux 2.1
1 EDB exploit
580
VMScore
CVE-2022-24407
In Cyrus SASL 2.1.17 up to and including 2.1.27 prior to 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement.
Cyrusimap Cyrus-sasl
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Ontap Select Deploy Administration Utility -
Netapp Active Iq Unified Manager -
Oracle Communications Cloud Native Core Security Edge Protection Proxy 22.1.1
Oracle Communications Cloud Native Core Console 22.2.0
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 22.2.0
505
VMScore
CVE-2004-1269
lppasswd in CUPS 1.1.22 does not remove the passwd.new file if it encounters a file-size resource limit while writing to passwd.new, which causes subsequent invocations of lppasswd to fail.
Easy Software Products Cups 1.1.19 Rc5
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.16
Easy Software Products Cups 1.1.7
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.15
Easy Software Products Cups 1.1.21
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.4
Easy Software Products Cups 1.1.12
Easy Software Products Cups 1.1.22 Rc1
Easy Software Products Cups 1.1.4 5
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.20
Easy Software Products Cups 1.1.18
Easy Software Products Cups 1.1.19
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.4 2
Easy Software Products Cups 1.1.6
1 EDB exploit
187
VMScore
CVE-2004-1270
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user in...
Easy Software Products Cups 1.1.19 Rc5
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.16
Easy Software Products Cups 1.1.7
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.15
Easy Software Products Cups 1.1.21
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.4
Easy Software Products Cups 1.1.12
Easy Software Products Cups 1.1.22 Rc1
Easy Software Products Cups 1.1.4 5
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.20
Easy Software Products Cups 1.1.18
Easy Software Products Cups 1.1.19
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.4 2
Easy Software Products Cups 1.1.6
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »