Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
answer answer vulnerabilities and exploits
(subscribe to this query)
392
VMScore
CVE-2013-1815
PackStack 2012.2.3 in Red Hat OpenStack Essex and Folsom can create the answer file in insecure directories such as /tmp or the current working directory, which allows local users to modify deployed systems by changing this file.
Redhat Openstack Folsom -
Redhat Packstack 2012.2.3
Redhat Openstack Essex -
383
VMScore
CVE-2021-1854
A call termination issue with was addressed with improved logic. This issue is fixed in iOS 14.5 and iPadOS 14.5. A legacy cellular network can automatically answer an incoming call when an ongoing call ends or drops. .
Apple Ipados
Apple Iphone Os
356
VMScore
CVE-2013-2243
mod/lesson/pagetypes/matching.php in Moodle up to and including 2.2.11, 2.3.x prior to 2.3.8, 2.4.x prior to 2.4.5, and 2.5.x prior to 2.5.1 allows remote authenticated users to obtain sensitive answer information by reading the HTML source code of a document.
Moodle Moodle 2.1.0
Moodle Moodle 2.1.9
Moodle Moodle 2.1.5
Moodle Moodle 2.1.4
Moodle Moodle 2.1.2
Moodle Moodle 2.1.6
Moodle Moodle 2.1.7
Moodle Moodle 2.1.8
Moodle Moodle 2.1.1
Moodle Moodle 2.1.3
Moodle Moodle 2.2.3
Moodle Moodle 2.2.2
Moodle Moodle 2.2.9
Moodle Moodle 2.2.7
Moodle Moodle 2.2.1
Moodle Moodle 2.2.0
Moodle Moodle 2.2.11
Moodle Moodle 2.2.6
Moodle Moodle 2.2.5
Moodle Moodle 2.2.8
Moodle Moodle 2.2.4
Moodle Moodle 2.2.10
490
VMScore
CVE-2015-5264
The lesson module in Moodle up to and including 2.6.11, 2.7.x prior to 2.7.10, 2.8.x prior to 2.8.8, and 2.9.x prior to 2.9.2 allows remote authenticated users to bypass intended access restrictions and enter additional answer attempts by leveraging the student role.
Moodle Moodle 2.8.6
Moodle Moodle 2.8.5
Moodle Moodle 2.7.7
Moodle Moodle 2.7.6
Moodle Moodle
Moodle Moodle 2.9.1
Moodle Moodle 2.8.2
Moodle Moodle 2.8.1
Moodle Moodle 2.7.3
Moodle Moodle 2.7.2
Moodle Moodle 2.9.0
Moodle Moodle 2.8.7
Moodle Moodle 2.8.0
Moodle Moodle 2.7.9
Moodle Moodle 2.7.8
Moodle Moodle 2.7.1
Moodle Moodle 2.7.0
Moodle Moodle 2.8.4
Moodle Moodle 2.8.3
Moodle Moodle 2.7.5
Moodle Moodle 2.7.4
515
VMScore
CVE-2008-4194
The p_exec_query function in src/dns_query.c in pdnsd prior to 1.2.7-par allows remote malicious users to cause a denial of service (daemon crash) via a long DNS reply with many entries in the answer section, related to a "dangling pointer bug."
Pdnsd Pdnsd 1.1.11-par
Pdnsd Pdnsd 1.1.10-par
Pdnsd Pdnsd 1.1.7a
Pdnsd Pdnsd 1.1.7
Pdnsd Pdnsd 1.2.5-par
Pdnsd Pdnsd
Pdnsd Pdnsd 1.1.11a-par
Pdnsd Pdnsd 1.1.8b1-par5
Pdnsd Pdnsd 1.1.8b1-par4
Pdnsd Pdnsd 1.2-par
Pdnsd Pdnsd 1.2.4-par
Pdnsd Pdnsd 1.1.8b1-par7
Pdnsd Pdnsd 1.1.8b1-par6
Pdnsd Pdnsd 1.2.1 Par
Pdnsd Pdnsd 1.1.9-par
Pdnsd Pdnsd 1.1.8b1-par8
3 EDB exploits
435
VMScore
CVE-2012-6517
Multiple cross-site scripting (XSS) vulnerabilities in DiY-CMS 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) question parameter to in /modules/poll/add.php or (2) question or (3) answer parameter to modules/poll/edit.php.
Diy-cms Diy-cms 1.0
1 EDB exploit
383
VMScore
CVE-2008-6413
Cross-site scripting (XSS) vulnerability in the Answers module 5.x-1.x-dev and possibly other 5.x versions, a module for Drupal, allows remote malicious users to inject arbitrary web script or HTML via a Simple Answer to a question.
Ticklespace Answers Module 5.x-1.x-dev
NA
CVE-2022-37428
PowerDNS Recursor up to and including 4.5.9, 4.6.2 and 4.7.1, when protobuf logging is enabled, has Improper Cleanup upon a Thrown Exception, leading to a denial of service (daemon crash) via a DNS query that leads to an answer with specific properties.
Powerdns Recursor
Fedoraproject Fedora 36
169
VMScore
CVE-2020-27925
An issue existed in the handling of incoming calls. The issue was addressed with additional state checks. This issue is fixed in iOS 14.2 and iPadOS 14.2. A user may answer two calls simultaneously without indication they have answered a second call.
Apple Ipados
Apple Iphone Os
383
VMScore
CVE-2017-0171
Windows DNS Server allows a denial of service vulnerability when Microsoft Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 Gold and R2, and Windows Server 2016 are configured to answer version queries, aka "Windows DNS Server Denial of Service Vulnerability".
Microsoft Windows Server 2012 -
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2016 -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »