Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tftp server vulnerabilities and exploits
(subscribe to this query)
570
VMScore
CVE-1999-1421
NBase switches NH208 and NH215 run a TFTP server which allows remote malicious users to send software updates to modify the switch or cause a denial of service (crash) by guessing the target filenames, which have default names.
N-base Nh208
N-base Nh215
505
VMScore
CVE-2017-6805
Directory traversal vulnerability in the TFTP server in MobaXterm Personal Edition 9.4 allows remote malicious users to read arbitrary files via a .. (dot dot) in a GET command.
Mobatek Mobaxterm 9.4
1 EDB exploit
668
VMScore
CVE-2002-1810
D-Link DWL-900AP+ Access Point 2.1 and 2.2 allows remote malicious users to access the TFTP server without authentication and read the config.img file, which contains sensitive information such as the administrative password, the WEP encryption keys, and network configuration inf...
Dlink Dwl-900ap\\+ Firmware 2.1
Dlink Dwl-900ap\\+ Firmware 2.2
570
VMScore
CVE-2004-0952
HP-UX B.11.00 through B.11.23, when running Ignite-UX and using the add_new_client command, causes the TFTP server to set world-writable permissions on part of the directory tree, which allows remote malicious users to modify data or cause disk consumption.
Hp Hp-ux 11.11
Hp Hp-ux 11.22
Hp Hp-ux 11.00
Hp Hp-ux 11.23
890
VMScore
CVE-2013-0689
The TFTP server on the Emerson Process Management ROC800 RTU with software 3.50 and previous versions, DL8000 RTU with software 2.30 and previous versions, and ROC800L RTU with software 1.20 and previous versions allows remote malicious users to upload files and consequently exec...
Enea Ose
Emerson Roc 800l Remote Terminal Unit -
Emerson Roc 800 Remote Terminal Unit -
Emerson Dl 8000 Remote Terminal Unit -
505
VMScore
CVE-2017-9024
Secure Bytes Cisco Configuration Manager, as bundled in Secure Bytes Secure Cisco Auditor (SCA) 3.0, has a Directory Traversal issue in its TFTP Server, allowing malicious users to read arbitrary files via ../ sequences in a pathname.
Secure-bytes Secure Cisco Auditor 3.0
1 EDB exploit
445
VMScore
CVE-2003-1264
TFTP server in Longshine Wireless Access Point (WAP) LCS-883R-AC-B, and in D-Link DI-614+ 2.0 which is based on it, allows remote malicious users to obtain the WEP secret and gain administrator privileges by downloading the configuration file (config.img) and other files without ...
D-link Di-614\\+ 2.0
Longshine Technologie Longshine Wireless Ethernet Access Point Lcs-883r-ac-b
490
VMScore
CVE-2020-35801
Certain NETGEAR devices are affected by incorrect configuration of security settings. This affects JGS516PE prior to 2.6.0.48, JGS524Ev2 prior to 2.6.0.48, JGS524PE prior to 2.6.0.48, and GS116Ev2 prior to 2.6.0.48. A TFTP server was found to be active by default. It allows remot...
Netgear Jgs516pe Firmware
Netgear Jgs524e Firmware
Netgear Jgs524pe Firmware
Netgear Gs116e Firmware
NA
CVE-2022-38742
Rockwell Automation ThinManager ThinServer versions 11.0.0 - 13.0.0 is vulnerable to a heap-based buffer overflow. An attacker could send a specifically crafted TFTP or HTTPS request, causing a heap-based buffer overflow that crashes the ThinServer process. If successfully exploi...
Rockwellautomation Thinmanager
755
VMScore
CVE-2017-14492
Heap-based buffer overflow in dnsmasq prior to 2.78 allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request.
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Debian Debian Linux 7.1
Debian Debian Linux 7.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.04
Debian Debian Linux 9.0
Thekelleys Dnsmasq
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »