Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
firmware vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2018-12147
Insufficient input validation in HECI subsystem in Intel(R) CSME before version 11.21.55, Intel® Server Platform Services before version 4.0 and Intel® Trusted Execution Engine Firmware before version 3.1.55 may allow a privileged user to potentially enable escalation of ...
Intel Converged Security Management Engine Firmware
Intel Server Platform Services Firmware
Intel Trusted Execution Engine Firmware
7.6
CVSSv3
CVE-2018-12191
Bounds check in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel(R) Server Platform Services prior to 4.00.04.383 or SPS 4.01.02.174, or Intel(R) TXE prior to 3.1.60 or 4.0.10 may allow an unauthenticated user to potentially execute a...
Intel Converged Security Management Engine Firmware
Intel Server Platform Services Firmware
Intel Trusted Execution Engine Firmware
7.6
CVSSv3
CVE-2018-12208
Buffer overflow in HECI subsystem in Intel(R) CSME prior to 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and Intel(R) TXE version prior to 3.1.60 or 4.0.10, or Intel(R) Server Platform Services before version 5.00.04.012 may allow an unauthenticated user to potentially execute arbitrar...
Intel Server Platform Services Firmware
Intel Converged Security Management Engine Firmware
Intel Trusted Execution Engine Firmware
7.3
CVSSv3
CVE-2018-3655
A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information via physical a...
Intel Converged Security Management Engine Firmware
Intel Server Platform Services Firmware
Intel Trusted Execution Engine Firmware
9.8
CVSSv3
CVE-2019-18269
Omron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability.
Omron Plc Cs Firmware
Omron Plc Cj Firmware
8.1
CVSSv3
CVE-2019-13533
In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.
Omron Plc Cj Firmware
Omron Plc Cs Firmware
NA
CVE-2015-6486
SQL injection vulnerability on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Rockwellautomation Micrologix 1400 Firmware
Rockwellautomation Micrologix 1100 Firmware
NA
CVE-2015-6490
Stack-based buffer overflow on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices through B FRN 15.003 allows remote malicious users to execute arbitrary code via unspecified vectors.
Rockwellautomation Micrologix 1100 Firmware
Rockwellautomation Micrologix 1400 Firmware
NA
CVE-2015-3959
The firmware in MNS prior to 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches has a hardcoded serial-console password for a privileged account, which might allow physically proximate malicious users to obtain access by establishing a console session to a nonstandard i...
Garrettcom Magnum 6k Firmware
Garrettcom Magnum 10k Firmware
NA
CVE-2015-3942
Multiple cross-site scripting (XSS) vulnerabilities in the web-server component in MNS prior to 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Garrettcom Magnum 10k Firmware
Garrettcom Magnum 6k Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »