Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nexus vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-37164
A buffer overflow issue exists in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. In the tcpTxThread function, the received data is copied to a stack buffer. An off-by-3 condition can occur, resulting ...
Swisslog-healthcare Hmi-3 Control Panel Firmware
7.5
CVSSv3
CVE-2021-37166
A buffer overflow issue leading to denial of service exists in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When HMI3 starts up, it binds a local service to a TCP port on all interfaces of the devic...
Swisslog-healthcare Hmi-3 Control Panel Firmware
9.8
CVSSv3
CVE-2021-37167
An insecure permissions issue exists in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. A user logged in using the default credentials can gain root access to the device, which provides permissions for...
Swisslog-healthcare Hmi-3 Control Panel Firmware
9.8
CVSSv3
CVE-2021-37160
A firmware validation issue exists in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. There is no firmware validation (e.g., cryptographic signature validation) during a File Upload for a firmware upda...
Swisslog-healthcare Hmi-3 Control Panel Firmware
9.8
CVSSv3
CVE-2021-37162
A buffer overflow issue exists in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. If an attacker sends a malformed UDP message, a buffer underflow occurs, leading to an out-of-bounds copy and possible ...
Swisslog-healthcare Hmi-3 Control Panel Firmware
9.8
CVSSv3
CVE-2021-37163
An insecure permissions issue exists in HMI3 Control Panel in Swisslog Healthcare Nexus operated by released versions of software before Nexus Software 7.2.5.7. The device has two user accounts with passwords that are hardcoded.
Swisslog-healthcare Hmi-3 Control Panel Firmware
9.8
CVSSv3
CVE-2021-37165
A buffer overflow issue exists in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When a message is sent to the HMI TCP socket, it is forwarded to the hmiProcessMsg function through the pendingQ, and m...
Swisslog-healthcare Hmi-3 Control Panel Firmware
4.3
CVSSv3
CVE-2021-34553
Sonatype Nexus Repository Manager 3.x prior to 3.31.0 allows a remote authenticated malicious user to get a list of blob files and read the content of a blob file (via a GET request) without having been granted access.
Sonatype Nexus Repository Manager
6.1
CVSSv3
CVE-2021-29159
A cross-site scripting (XSS) vulnerability has been discovered in Nexus Repository Manager 3.x prior to 3.30.1. An attacker with a local account can create entities with crafted properties that, when viewed by an administrator, can execute arbitrary JavaScript in the context of t...
Sonatype Nexus Repository Manager
5.3
CVSSv3
CVE-2021-30635
Sonatype Nexus Repository Manager 3.x prior to 3.30.1 allows a remote malicious user to get a list of files and directories that exist in a UI-related folder via directory traversal (no customer-specific data is exposed).
Sonatype Nexus Repository Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »