Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
system recovery vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2015-0207
The dtls1_listen function in d1_lib.c in OpenSSL 1.0.2 prior to 1.0.2a does not properly isolate the state information of independent data streams, which allows remote malicious users to cause a denial of service (application crash) via crafted DTLS traffic, as demonstrated by DT...
Openssl Openssl 1.0.2
445
VMScore
CVE-2014-3348
The SSH module in the Integrated Management Controller (IMC) prior to 2.3.1 in Cisco Unified Computing System on E-Series blade servers allows remote malicious users to cause a denial of service (IMC hang) via a crafted SSH packet, aka Bug ID CSCuo69206.
Cisco Integrated Management Controller
Cisco Unified Computing System E140s M1 -
Cisco Unified Computing System E140s M2 -
Cisco Unified Computing System En120s M2 -
Cisco Unified Computing System E140d -
Cisco Unified Computing System E140dp -
Cisco Unified Computing System E160d -
Cisco Unified Computing System E160dp -
445
VMScore
CVE-2011-4046
The Dell KACE K2000 System Deployment Appliance stores the recovery account password in cleartext within a PHP script, which allows context-dependent malicious users to obtain sensitive information by examining script source code.
Dell Kace K2000 Systems Deployment Appliance
445
VMScore
CVE-2008-2512
Directory traversal vulnerability in Symantec Backup Exec System Recovery Manager 7.x prior to 7.0.4 and 8.x prior to 8.0.2 allows remote malicious users to read arbitrary files via unspecified vectors.
Symantec Backupexec System Recovery 7.0.1
Symantec Backupexec System Recovery 7.0.2
Symantec Backupexec System Recovery 7.0.3
Symantec Backupexec System Recovery 8.0
Symantec Backupexec System Recovery 8.0.1
Symantec Backupexec System Recovery 7.0
445
VMScore
CVE-2007-4346
The Job Engine (bengine.exe) service in Symantec Backup Exec for Windows Servers (BEWS) 11d build 11.0.7170 and 11.0.6.6235 allows remote malicious users to cause a denial of service (NULL dereference and service crash) via a crafted packet to port 5633/tcp.
Symantec Backupexec System Recovery 11.0.6235
Symantec Backupexec System Recovery 11.0.7170
436
VMScore
CVE-2021-28038
An issue exists in the Linux kernel up to and including 5.11.3, as used with Xen PV. A certain part of the netback driver lacks necessary treatment of errors such as failed memory allocations (as a result of changes to the handling of grant mapping errors). A host OS denial of se...
Linux Linux Kernel 5.12
Linux Linux Kernel
Debian Debian Linux 9.0
Netapp Cloud Backup -
Netapp Solidfire Baseboard Management Controller Firmware -
436
VMScore
CVE-2020-25639
A NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality in versions before 5.12-rc1 in the way the user calls ioctl DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC. This flaw allows a local user to crash the system.
Linux Linux Kernel
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 5.0
Redhat Enterprise Linux 8.0
Redhat Messaging Realtime Grid 2.0
Redhat Openshift Container Platform 4.5
Redhat Openshift Container Platform 4.6
Redhat Openshift Container Platform 4.4
436
VMScore
CVE-2018-17972
An issue exists in the proc_pid_stack function in fs/proc/base.c in the Linux kernel up to and including 4.18.11. It does not ensure that only root may inspect the kernel stack of an arbitrary task, allowing a local malicious user to exploit racy stack unwinding and leak kernel t...
Linux Linux Kernel
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Tus 7.6
Redhat Enterprise Linux Server Eus 7.6
Redhat Enterprise Linux Server Aus 7.6
Redhat Enterprise Linux Server 7.6
Debian Debian Linux 8.0
436
VMScore
CVE-2011-3477
GEAR Software CD DVD Filter driver (aka GEARAspiWDM.sys), as used in Symantec Backup Exec System Recovery 8.5 and BESR 2010, Symantec System Recovery 2011, Norton 360, and Norton Ghost, allows local users to cause a denial of service (system crash) via unspecified vectors.
Symantec Norton Ghost
Symantec System Recovery 2011 10.0
Symantec Backup Exec System Recovery 8.5
Symantec Backup Exec System Recovery 9.0
Symantec Norton 360 5.0
Symantec Backup Exec System Recovery 2010
436
VMScore
CVE-2007-2361
Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery prior to 20070426, when remote backups of restore points images are configured, uses weak permissions (world readable) for a configuration file with network share credentials, wh...
Symantec Backupexec System Recovery 6.5
Symantec Norton Ghost 10.0
Symantec Backupexec System Recovery 6.53
Symantec Livestate Recovery 6.0
Symantec Norton Save And Recovery 1.01
Symantec Norton Save And Recovery 1.01b
Symantec Norton Save And Recovery 11.0
Symantec Backupexec System Recovery 6.52
Symantec Backupexec System Recovery 6.52a
Symantec Norton Ghost 10.01
Symantec Livestate Recovery 6.01
Symantec Livestate Recovery 6.02
Symantec Norton Save And Recovery 11.01
Symantec Norton Save And Recovery 11.01b
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »