Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-1868
This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists wit...
NA
CVE-2023-50738
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lexmark CX331adwe printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the `/usr/bin/hydra` service, which listens on TC...
NA
CVE-2024-5510
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within ...
NA
CVE-2024-5256
This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Sonos Era 100 smart speakers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SMB2 messages. The issu...
NA
CVE-2024-5303
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within ...
NA
CVE-2024-36843
libmodbus v3.1.6 exists to contain a heap overflow via the modbus_mapping_free() function.
NA
CVE-2024-36844
libmodbus v3.1.6 exists to contain a use-after-free via the ctx->backend pointer. This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted message sent to the unit-test-server.
NA
CVE-2024-36845
An invalid pointer in the modbus_receive() function of libmodbus v3.1.6 allows malicious users to cause a Denial of Service (DoS) via a crafted message sent to the unit-test-server.
NA
CVE-2024-34001
Actions in the admin preset tool did not include the necessary token to prevent a CSRF risk.
NA
CVE-2024-33997
Additional sanitizing was required when opening the equation editor to prevent a stored XSS risk when editing another user's equation.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »