Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bootstrap vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2018-15370
A vulnerability in Cisco IOS ROM Monitor (ROMMON) Software for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, local malicious user to bypass Cisco Secure Boot validation checks and load a compromised software image on an affected device. The vulnerability is ...
Cisco Ios Rom Monitor 15.1(2)sy3
NA
CVE-2024-35169
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AREOI All Bootstrap Blocks allows Stored XSS.This issue affects All Bootstrap Blocks: from n/a up to and including 1.3.15.
6.9
CVSSv2
CVE-2020-3524
A vulnerability in the Cisco IOS XE ROM Monitor (ROMMON) Software for Cisco 4000 Series Integrated Services Routers, Cisco ASR 920 Series Aggregation Services Routers, Cisco ASR 1000 Series Aggregation Services Routers, and Cisco cBR-8 Converged Broadband Routers could allow an u...
Cisco Ios Xe Rom Monitor
4.3
CVSSv2
CVE-2022-23308
valid.c in libxml2 prior to 2.9.13 has a use-after-free of ID and IDREF attributes.
Xmlsoft Libxml2
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Apple Mac Os X 10.15.7
Apple Mac Os X
Apple Iphone Os
Apple Watchos
Apple Tvos
Apple Ipados
Apple Macos
Netapp Snapdrive -
Netapp Snapmanager -
Netapp Ontap Select Deploy Administration Utility -
Netapp Clustered Data Ontap -
Netapp Smi-s Provider -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Solidfire & Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Manageability Software Development Kit -
Netapp Solidfire, Enterprise Sds & Hci Storage Node -
Netapp Bootstrap Os -
Netapp H300s Firmware -
5
CVSSv2
CVE-2019-7649
global.encryptPassword in bootstrap/global.js in CMSWing 1.3.7 relies on multiple MD5 operations for password hashing.
Cmswing Cmswing 1.3.7
10
CVSSv2
CVE-2017-3831
A vulnerability in the web-based GUI of Cisco Mobility Express 1800 Series Access Points could allow an unauthenticated, remote malicious user to bypass authentication. The attacker could be granted full administrator privileges. The vulnerability is due to improper implementatio...
Cisco Aironet Access Point Software 8.1(15.14)
Cisco Aironet Access Point Software 8.1(112.3)
Cisco Aironet Access Point Software 8.1(112.4)
Cisco Aironet Access Point Software 8.1(131.0)
4.3
CVSSv2
CVE-2020-28727
Cross-site scripting (XSS) exists in SeedDMS 6.0.13 via the folderid parameter to views/bootstrap/class.DropFolderChooser.php.
Seeddms Seeddms 6.0.13
NA
CVE-2022-33294
Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message.
Qualcomm Mdm8207 Firmware -
Qualcomm Mdm9205 Firmware -
Qualcomm Mdm9206 Firmware -
Qualcomm Mdm9207 Firmware -
Qualcomm Qca4004 Firmware -
Qualcomm Qts110 Firmware -
Qualcomm Snapdragon Wear 1100 Firmware -
Qualcomm Snapdragon Wear 1200 Firmware -
Qualcomm Snapdragon Wear 1300 Firmware -
Qualcomm Snapdragon X5 Lte Modem Firmware -
Qualcomm Wcd9306 Firmware -
Qualcomm Wcd9330 Firmware -
3.5
CVSSv2
CVE-2020-13890
The Neon theme 2.0 prior to 2020-06-03 for Bootstrap allows XSS via an Add Task Input operation in a dashboard.
Laborator Neon
9.3
CVSSv2
CVE-2017-18641
In LXC 2.0, many template scripts download code over cleartext HTTP, and omit a digital-signature check, before running it to bootstrap containers.
Linuxcontainers Lxc 2.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »