Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
platform sdk vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-8753
Out-of-bounds read in DHCP subsystem for Intel(R) AMT, Intel(R) ISM versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access.
Intel Active Management Technology Firmware
Intel Standard Manageability
7.5
CVSSv3
CVE-2020-8754
Out-of-bounds read in subsystem for Intel(R) AMT, Intel(R) ISM versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access.
Intel Active Management Technology Firmware
Netapp Cloud Backup -
Intel Standard Manageability
6.7
CVSSv3
CVE-2020-8757
Out-of-bounds read in subsystem for Intel(R) AMT versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access.
Intel Active Management Technology Firmware
Netapp Cloud Backup -
7.8
CVSSv3
CVE-2020-12297
Improper access control in Installer for Intel(R) CSME Driver for Windows versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel TXE 3.1.80, 4.0.30 may allow an authenticated user to potentially enable escalation of privileges via lo...
Intel Converged Security And Manageability Engine
Intel Trusted Execution Technology 3.1.80
Intel Trusted Execution Technology 4.0.30
7.8
CVSSv3
CVE-2020-12303
Use after free in DAL subsystem for Intel(R) CSME versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE 3.1.80, 4.0.30 may allow an authenticated user to potentially enable escalation of privileges via local access.
Intel Converged Security And Manageability Engine
Intel Trusted Execution Technology 3.1.80
Intel Trusted Execution Technology 4.0.30
7.5
CVSSv3
CVE-2022-39218
The JS Compute Runtime for Fastly's Compute@Edge platform provides the environment JavaScript is executed in when using the Compute@Edge JavaScript SDK. In versions before 0.5.3, the `Math.random` and `crypto.getRandomValues` methods fail to use sufficiently random values. T...
Fastly Js-compute
NA
CVE-2012-5783
Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service (FPS) merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which all...
Apache Httpclient 3.1
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
1 Github repository
8.8
CVSSv3
CVE-2023-39913
Deserialization of Untrusted Data, Improper Input Validation vulnerability in Apache UIMA Java SDK, Apache UIMA Java SDK, Apache UIMA Java SDK, Apache UIMA Java SDK.This issue affects Apache UIMA Java SDK: prior to 3.5.0. Users are recommended to upgrade to version 3.5.0, which f...
Apache Uimaj
8.8
CVSSv3
CVE-2018-16986
Texas Instruments BLE-STACK v2.2.1 for SimpleLink CC2640 and CC2650 devices allows remote malicious users to execute arbitrary code via a malformed packet that triggers a buffer overflow.
Ti Ble-stack
Ti Ble-stack 3.0.0
NA
CVE-2012-0110
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent malicious users to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK.
Oracle Fusion Middleware 8.3.5.0
Oracle Fusion Middleware 8.3.7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
NEXT »