Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
release control vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-0448
A vulnerability in the identity management service of Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote malicious user to bypass authentication and take complete control of identity management functions. The vulnerability is due to insufficien...
Cisco Digital Network Architecture Center
1 Article
9.8
CVSSv3
CVE-2018-13791
The HTTP API in ABBYY FlexiCapture prior to 12 Release 1 Update 7 allows an malicious user to conduct Access Control attacks via the /FlexiCapture12/Login/Server/SevaUserProfile FlexiCaptureTmsSts2 parameter.
Abbyy Flexicapture 12.0.1.475
Abbyy Flexicapture 12.0.1.428
Abbyy Flexicapture 12.0.1.367
Abbyy Flexicapture 12.0.1.292
Abbyy Flexicapture 12.0.1.282
Abbyy Flexicapture 12.0.1.267
Abbyy Flexicapture 12.0.1.263
9.8
CVSSv3
CVE-2018-0253
A vulnerability in the ACS Report component of Cisco Secure Access Control System (ACS) could allow an unauthenticated, remote malicious user to execute arbitrary commands on an affected system. Commands executed by the attacker are processed at the targeted user's privilege...
Cisco Secure Access Control System 5.8(0.8)
Cisco Secure Access Control System
Cisco Secure Access Control System 5.8
1 Article
9.8
CVSSv3
CVE-2018-0147
A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) prior to release 5.8 patch 9 could allow an unauthenticated, remote malicious user to execute arbitrary commands on an affected device. The vulnerability is due to insecure deserialization of...
Cisco Secure Access Control System 5.2(0.3)
1 Article
9.8
CVSSv3
CVE-2017-12240
The DHCP relay subsystem of Cisco IOS 12.2 up to and including 15.6 and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote malicious user to execute arbitrary code and gain full control of an affected system. The attacker could also cause a...
Cisco Ios 12.1(14)e7
Cisco Ios 12.3(3f)
Cisco Ios 12.4(11)xw6
Cisco Ios 12.2(28)sb12
Cisco Ios 12.1(5)xm1
Cisco Ios 15.2(4)ea
Cisco Ios 12.4(2)t2
Cisco Ios 12.2(2)xa2
Cisco Ios 15.3(3)jnb3
Cisco Ios 12.2(18)ixa
Cisco Ios 12.2(19c)
Cisco Ios 12.1(2)e1
Cisco Ios 12.1(19)ew
Cisco Ios 12.3(14)ym4
Cisco Ios 12.2(27)sv
Cisco Ios 12.2(28d)
Cisco Ios 12.2(7b)
Cisco Ios 12.1(5b)e7
Cisco Ios 12.2(53)sg9
Cisco Ios 12.2(18)sxd2
Cisco Ios 12.3(8)jea1
Cisco Ios 12.4(16)mr1
9.8
CVSSv3
CVE-2015-7853
The datalen parameter in the refclock driver in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
9.8
CVSSv3
CVE-2015-7705
The rate limiting feature in NTP 4.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77 allows remote malicious users to have unspecified impact via a large number of crafted requests.
Ntp Ntp 4.2.8
Ntp Ntp
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
Citrix Xenserver 7.0
Citrix Xenserver 6.0.2
Citrix Xenserver 6.5
Citrix Xenserver 6.2.0
Siemens Tim 4r-ie Firmware
Siemens Tim 4r-ie Dnp3 Firmware
9.8
CVSSv3
CVE-2015-7871
Crypto-NAK packets in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to bypass authentication.
Ntp Ntp 4.2.5
Ntp Ntp 4.2.8
Ntp Ntp
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Netapp Oncommand Balance -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Netapp Oncommand Unified Manager -
Netapp Oncommand Performance Manager -
9.8
CVSSv3
CVE-2017-10965
An issue exists in Irssi prior to 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer.
Irssi Irssi
9.8
CVSSv3
CVE-2017-10966
An issue exists in Irssi prior to 1.0.4. While updating the internal nick list, Irssi could incorrectly use the GHashTable interface and free the nick while updating it. This would then result in use-after-free conditions on each access of the hash table.
Irssi Irssi
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »