Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nfs vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2020-25643
A flaw was found in the HDLC_PPP module of the Linux kernel in versions prior to 5.9-rc7. Memory corruption and a read overflow is caused by improper input validation in the ppp_cp_parse_cr function which can cause the system to crash or cause a denial of service. The highest thr...
Linux Linux Kernel 5.9.0
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Opensuse Leap 15.1
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.2
Netapp H410c Firmware -
Starwindsoftware Starwind Virtual San V8
7.5
CVSSv2
CVE-2019-11510
In Pulse Secure Pulse Connect Secure (PCS) 8.2 prior to 8.2R12.1, 8.3 prior to 8.3R7.1, and 9.0 prior to 9.0R3.4, an unauthenticated remote attacker can send a specially crafted URI to perform an arbitrary file reading vulnerability .
Ivanti Connect Secure 9.0
Ivanti Connect Secure 8.2
Ivanti Connect Secure 8.3
1 EDB exploit
26 Github repositories
9 Articles
7.5
CVSSv2
CVE-2019-11540
In Pulse Secure Pulse Connect Secure version 9.0RX prior to 9.0R3.4 and 8.3RX prior to 8.3R7.1 and Pulse Policy Secure version 9.0RX prior to 9.0R3.2 and 5.4RX prior to 5.4R7.1, an unauthenticated, remote attacker can conduct a session hijacking attack.
Pulsesecure Pulse Policy Secure 5.4r1
Pulsesecure Pulse Policy Secure 5.4r2
Pulsesecure Pulse Policy Secure 5.4r2.1
Pulsesecure Pulse Policy Secure 5.4r3
Pulsesecure Pulse Policy Secure 5.4rx
Pulsesecure Pulse Connect Secure 8.3rx
Pulsesecure Pulse Policy Secure 5.4r4
Pulsesecure Pulse Policy Secure 5.4r5
Pulsesecure Pulse Policy Secure 5.4r5.2
Pulsesecure Pulse Policy Secure 5.4r6
Pulsesecure Pulse Policy Secure 5.4r6.1
Pulsesecure Pulse Policy Secure 5.4r7
Pulsesecure Pulse Policy Secure 9.0r1
Pulsesecure Pulse Policy Secure 9.0r2
Pulsesecure Pulse Policy Secure 9.0r2.1
Pulsesecure Pulse Policy Secure 9.0r3
Pulsesecure Pulse Policy Secure 9.0r3.1
Pulsesecure Pulse Policy Secure 9.0rx
Pulsesecure Pulse Connect Secure 9.0r1
Pulsesecure Pulse Connect Secure 9.0r2
Pulsesecure Pulse Connect Secure 9.0r2.1
Pulsesecure Pulse Connect Secure 9.0r3
1 Github repository
7.5
CVSSv2
CVE-2009-5153
In Novell NetWare prior to 6.5 SP8, a stack buffer overflow in processing of CALLIT RPC calls in the NFS Portmapper daemon in PKERNEL.NLM allowed remote unauthenticated malicious users to execute code, because a length field was incorrectly trusted.
Microfocus Netware 6.5
Microfocus Netware
7.5
CVSSv2
CVE-2011-2500
The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils prior to 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote malicious users to mount filesystems by establishing crafted DNS A and PTR records.
Linux-nfs Nfs-utils 1.2.1
Linux-nfs Nfs-utils 1.2.0
Linux-nfs Nfs-utils
Linux-nfs Nfs-utils 1.2.2
7.5
CVSSv2
CVE-2013-3266
The nfsrvd_readdir function in sys/fs/nfsserver/nfs_nfsdport.c in the new NFS server in FreeBSD 8.0 up to and including 9.1-RELEASE-p3 does not verify that a READDIR request is for a directory node, which allows remote malicious users to cause a denial of service (memory corrupti...
Freebsd Freebsd 8.2
Freebsd Freebsd 9.0
Freebsd Freebsd 8.3
Freebsd Freebsd 8.0
Freebsd Freebsd 8.1
Freebsd Freebsd 9.1
7.5
CVSSv2
CVE-2012-2448
VMware ESXi 3.5 up to and including 5.0 and ESX 3.5 up to and including 4.1 allow remote malicious users to execute arbitrary code or cause a denial of service (memory overwrite) via NFS traffic.
Vmware Esxi 4.1
Vmware Esxi 5.0
Vmware Esxi 4.0
Vmware Esxi 3.5
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esx 3.5
7.5
CVSSv2
CVE-2011-4191
Stack-based buffer overflow in the xdrDecodeString function in XNFS.NLM in Novell NetWare 6.5 SP8 allows remote malicious users to execute arbitrary code or cause a denial of service (abend or NFS outage) via long packets.
Novell Netware 6.5
3 EDB exploits
7.5
CVSSv2
CVE-2010-4367
awstats.cgi in AWStats prior to 7.0 accepts a configdir parameter in the URL, which allows remote malicious users to execute arbitrary commands via a crafted configuration file located on a (1) WebDAV server or (2) NFS server.
Awstats Awstats 6.3
Awstats Awstats 2.2.4
Awstats Awstats 6.5 1
Awstats Awstats 2.2.3
Awstats Awstats 6.0
Awstats Awstats 5.9
Awstats Awstats 5.2
Awstats Awstats 5.1
Awstats Awstats 6.2
Awstats Awstats 3.1
Awstats Awstats 6.5
Awstats Awstats 2.1.
Awstats Awstats 6.7
Awstats Awstats 6.1
Awstats Awstats 5.4
Awstats Awstats 5.3
Awstats Awstats 6.4
Awstats Awstats 6.4 1
Awstats Awstats 6.5 1.857
Awstats Awstats 4.1
Awstats Awstats 1.0
Awstats Awstats 5.8
1 EDB exploit
7.5
CVSSv2
CVE-2003-1596
NWFTPD.nlm prior to 5.03.12 in the FTP server in Novell NetWare does not properly restrict filesystem use by anonymous users with NFS Gateway home directories, which allows remote malicious users to bypass intended access restrictions via an FTP session.
Novell Netware Ftp Server 5.01i
Novell Netware Ftp Server 5.01w
Novell Netware Ftp Server 5.02y
Novell Netware Ftp Server 5.01y
Novell Netware Ftp Server 5.02b
Novell Netware Ftp Server 5.02i
Novell Netware Ftp Server 5.02r
Novell Netware Ftp Server 5.01o
Novell Netware Ftp Server
Novell Netware 6.0
Novell Netware 5.1
Novell Netware 6.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »