Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
system recovery vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2021-39767
In miniadb, there is a possible way to get read/write access to recovery system properties due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: A...
Google Android 12.1
4.6
CVSSv2
CVE-2021-26431
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
Microsoft Windows 10 2004
Microsoft Windows Server 2016 2004
Microsoft Windows 10 20h2
Microsoft Windows Server 2016 20h2
Microsoft Windows 10 21h1
4.6
CVSSv2
CVE-2021-27365
An issue exists in the Linux kernel up to and including 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed the PAGE_SIZE value. An unprivileged user can send a Netlink message that is associated with iSCSI, and has a length ...
Linux Linux Kernel
Debian Debian Linux 9.0
Oracle Tekelec Platform Distribution
Netapp Solidfire Baseboard Management Controller Firmware -
9 Github repositories
4.6
CVSSv2
CVE-2021-26930
An issue exists in the Linux kernel 3.11 up to and including 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by the frontend. In this process, errors may be encountered. In one case, an error encountered earlier might be d...
Linux Linux Kernel
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
4.6
CVSSv2
CVE-2018-18281
Since Linux kernel version 3.2, the mremap() syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate() removes entries from the pagetables of a task that is in the middle of mremap(), a stale TLB entry can remain for a short time that permits a...
Linux Linux Kernel
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.10
Debian Debian Linux 8.0
4.6
CVSSv2
CVE-2006-5649
Unspecified vulnerability in the "alignment check exception handling" in Ubuntu 5.10, 6.06 LTS, and 6.10 for the PowerPC (PPC) allows local users to cause a denial of service (kernel panic) via unspecified vectors.
Ubuntu Ubuntu Linux 6.06 Lts
Ubuntu Ubuntu Linux 5.10
Ubuntu Ubuntu Linux 6.10
4.4
CVSSv2
CVE-2017-5701
Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery.
Intel Nuc7i7bnh Firmware Ayaplcel.86a.0041
Intel Nuc7i7bnh Firmware Syskli35.86a.0062
Intel Nuc7i7bnh Firmware Kyskli70.86a.0050
Intel Nuc7i7bnh Firmware Ccsklm5v.86a.0052
Intel Nuc7i7bnh Firmware Dnkbli5v.86a.0026
Intel Nuc7i7bnh Firmware Rybdwi35.86a.0366
Intel Nuc7i7bnh Firmware Bnkbl357.86a.0052
Intel Nuc7i7bnh Firmware Ccsklm30.86a.0052
Intel Nuc7i7bnh Firmware Tybyt20h.86a.0015
Intel Nuc7i7bnh Firmware Dnkbli30.86a.0026
Intel Nuc7i5bnh Firmware Ccsklm5v.86a.0052
Intel Nuc7i5bnh Firmware Ccsklm30.86a.0052
Intel Nuc7i5bnh Firmware Rybdwi35.86a.0366
Intel Nuc7i5bnh Firmware Tybyt20h.86a.0015
Intel Nuc7i5bnh Firmware Ayaplcel.86a.0041
Intel Nuc7i5bnh Firmware Kyskli70.86a.0050
Intel Nuc7i5bnh Firmware Bnkbl357.86a.0052
Intel Nuc7i5bnh Firmware Dnkbli5v.86a.0026
Intel Nuc7i5bnh Firmware Syskli35.86a.0062
Intel Nuc7i5bnh Firmware Dnkbli30.86a.0026
Intel Nuc7i5bnk Firmware Tybyt20h.86a.0015
Intel Nuc7i5bnk Firmware Bnkbl357.86a.0052
4.4
CVSSv2
CVE-2012-0305
Untrusted search path vulnerability in Symantec System Recovery 2011 before SP2 and Backup Exec System Recovery 2010 before SP5 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Symantec Backupexec System Recovery 2010
Symantec System Recovery 2011
Symantec Backupexec System Recovery 2011
4.3
CVSSv2
CVE-2022-29824
In libxml2 prior to 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c (xmlBuffer*) don't check for integer overflows. This can result in out-of-bounds memory writes. Exploitation requires a victim to open a crafted, multi-gigabyte XML file. Other softwa...
Xmlsoft Libxml2
Xmlsoft Libxslt
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Snapdrive -
Netapp Ontap Select Deploy Administration Utility -
Netapp Clustered Data Ontap -
Netapp Smi-s Provider -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Solidfire \\& Hci Management Node -
Netapp Manageability Software Development Kit -
Netapp Active Iq Unified Manager -
Netapp Snapmanager -
Oracle Zfs Storage Appliance Kit 8.8
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
4.3
CVSSv2
CVE-2022-23308
valid.c in libxml2 prior to 2.9.13 has a use-after-free of ID and IDREF attributes.
Xmlsoft Libxml2
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Apple Mac Os X 10.15.7
Apple Mac Os X
Apple Iphone Os
Apple Watchos
Apple Tvos
Apple Ipados
Apple Macos
Netapp Snapdrive -
Netapp Snapmanager -
Netapp Ontap Select Deploy Administration Utility -
Netapp Clustered Data Ontap -
Netapp Smi-s Provider -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Manageability Software Development Kit -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Netapp Bootstrap Os -
Netapp H300s Firmware -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »