Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
client application access vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-0811
The web interface in NotifyLink 3.0 does not properly restrict access to functions that have been disabled in the GUI, which allows remote authenticated users to bypass intended restrictions via a direct request to certain URLs.
Notify Technology Notifylink Enterprise Server
7.8
CVSSv3
CVE-2019-3800
CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. A local authenticated malicious user with access to the CF CLI config file can act as that client, who is t...
Pivotal Cloud Foundry Deployment Concourse Tasks
Pivotal Cloud Foundry Deployment
Pivotal Cloud Foundry Smoke Test
Pivotal Cloud Foundry Routing Release
Pivotal Cloud Foundry Notifications
Pivotal Cloud Foundry Command Line Interface Release
Pivotal Cloud Foundry Log Cache Release
Pivotal Cloud Foundry Networking Release
Pivotal Cloud Foundry Command Line Interface
Pivotal Cloud Foundry Healthwatch
Pivotal Credhub Service Broker For Pcf
Pivotal Metric Registrar Release
Pivotal On Demand Service Broker
Pivotal Application Service
Pivotal Cloud Foundry Autoscaling Release
Pivotal Pivotal Cloud Foundry Service Broker
Pivotal Single Sign-on
Pivotal Cloud Foundry Event Alerts
Appdynamics Platform Montioring
Bluemedora Nozzle
Contrastsecurity Service Broker
Cyberark Conjur Service Broker
9.8
CVSSv3
CVE-2020-1938
When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exp...
Apache Tomcat
Apache Geode 1.12.0
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Oracle Transportation Management 6.3.7
Oracle Hospitality Guest Access 4.2.0
Oracle Hospitality Guest Access 4.2.1
Oracle Agile Plm 9.3.3
Oracle Agile Plm 9.3.5
Oracle Agile Plm 9.3.6
Oracle Instantis Enterprisetrack
Oracle Mysql Enterprise Monitor
Oracle Health Sciences Empirica Signal 7.3.3
Oracle Communications Instant Messaging Server 10.0.1.4.0
Oracle Communications Element Manager 8.2.0
Oracle Communications Element Manager 8.2.1
Oracle Communications Element Manager 8.1.1
Oracle Workload Manager 18c
Oracle Workload Manager 19c
Oracle Workload Manager 12.2.0.1
Oracle Agile Engineering Data Management 6.2.1.0
57 Github repositories
1 Article
7.4
CVSSv3
CVE-2017-6168
On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or 13.0.0-13.0.0 HF2 (fixed in 13.0.0 HF3) a virtual server configured with a Client SSL profile may be vulnerable to an Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) ...
F5 Big-ip Ltm
F5 Big-ip Ltm 13.0.0
F5 Big-ip Application Acceleration Manager 13.0.0
F5 Big-ip Application Acceleration Manager
F5 Big-ip Afm
F5 Big-ip Afm 13.0.0
F5 Big-ip Analytics 13.0.0
F5 Big-ip Analytics
F5 Big-ip Apm
F5 Big-ip Apm 13.0.0
F5 Big-ip Asm
F5 Big-ip Asm 13.0.0
F5 Big-ip Link Controller
F5 Big-ip Link Controller 13.0.0
F5 Big-ip Pem 13.0.0
F5 Big-ip Pem
F5 Websafe 13.0.0
F5 Websafe
F5 Websafe 11.6.2
1 Github repository
NA
CVE-2010-3043
Multiple buffer overflows in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players T27LB before SP21 EP3 and T27LC before SP22 allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a craft...
Cisco Webex Recording Format Player 26.49
Cisco Webex Recording Format Player 27.10
Cisco Webex Recording Format Player 27.13
Cisco Webex Recording Format Player 27.11.0.3328
Cisco Webex Recording Format Player 27.12
Cisco Webex Advanced Recording Format Player 27.13
Cisco Webex Advanced Recording Format Player 27.11.0.3328
Cisco Webex Advanced Recording Format Player 27.12
Cisco Webex Advanced Recording Format Player 26.49
Cisco Webex Advanced Recording Format Player 27.10
1 Github repository
NA
CVE-2010-3044
Multiple buffer overflows in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players T27LB before SP21 EP3 and T27LC before SP22 allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a craft...
Cisco Webex Recording Format Player 26.49
Cisco Webex Recording Format Player 27.10
Cisco Webex Recording Format Player 27.11.0.3328
Cisco Webex Recording Format Player 27.12
Cisco Webex Recording Format Player 27.13
Cisco Webex Advanced Recording Format Player 27.12
Cisco Webex Advanced Recording Format Player 27.13
Cisco Webex Advanced Recording Format Player 26.49
Cisco Webex Advanced Recording Format Player 27.10
Cisco Webex Advanced Recording Format Player 27.11.0.3328
NA
CVE-2010-3041
Multiple buffer overflows in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players T27LB before SP21 EP3 and T27LC before SP22 allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a craft...
Cisco Webex Recording Format Player 27.13
Cisco Webex Recording Format Player 26.49
Cisco Webex Recording Format Player 27.12
Cisco Webex Recording Format Player 27.10
Cisco Webex Recording Format Player 27.11.0.3328
Cisco Webex Advanced Recording Format Player 27.11.0.3328
Cisco Webex Advanced Recording Format Player 27.12
Cisco Webex Advanced Recording Format Player 27.13
Cisco Webex Advanced Recording Format Player 26.49
Cisco Webex Advanced Recording Format Player 27.10
NA
CVE-2010-3042
Multiple buffer overflows in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players T27LB before SP21 EP3 and T27LC before SP22 allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a craft...
Cisco Webex Recording Format Player 27.11.0.3328
Cisco Webex Recording Format Player 27.12
Cisco Webex Recording Format Player 27.13
Cisco Webex Recording Format Player 26.49
Cisco Webex Recording Format Player 27.10
Cisco Webex Advanced Recording Format Player 26.49
Cisco Webex Advanced Recording Format Player 27.10
Cisco Webex Advanced Recording Format Player 27.13
Cisco Webex Advanced Recording Format Player 27.11.0.3328
Cisco Webex Advanced Recording Format Player 27.12
NA
CVE-2010-3269
Multiple stack-based buffer overflows in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players T27LB before SP21 EP3 and T27LC before SP22 allow remote malicious users to execute arbitrary code via a crafted (1) .wrf or (2) .arf file, related to use o...
Cisco Webex Recording Format Player 27.10
Cisco Webex Recording Format Player 27.11.0.3328
Cisco Webex Recording Format Player 27.13
Cisco Webex Recording Format Player 26.49
Cisco Webex Recording Format Player 27.12
Cisco Webex Advanced Recording Format Player 27.13
Cisco Webex Advanced Recording Format Player 26.49
Cisco Webex Advanced Recording Format Player 27.12
Cisco Webex Advanced Recording Format Player 27.10
Cisco Webex Advanced Recording Format Player 27.11.0.3328
7.5
CVSSv3
CVE-2021-40875
Improper Access Control in Gurock TestRail versions < 7.2.0.3014 resulted in sensitive information exposure. A threat actor can access the /files.md5 file on the client side of a Gurock TestRail application, disclosing a full list of application files and the corresponding fil...
Gurock Testrail
2 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »