Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
call management system vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-4189
A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is how the FTP client trusts the host from the PASV response by default. This flaw allows an malicious user to set up a malicious FTP server that can tric...
Python Python
Python Python 3.10.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Redhat Enterprise Linux 8.0
Redhat Software Collections -
Netapp Ontap Select Deploy Administration Utility -
NA
CVE-2022-26373
Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
Intel Xeon Platinum 8253 Firmware -
Intel Xeon Platinum 8256 Firmware -
Intel Xeon Platinum 8260 Firmware -
Intel Xeon Platinum 8260l Firmware -
Intel Xeon Platinum 8260m Firmware -
Intel Xeon Platinum 8260y Firmware -
Intel Xeon Platinum 8268 Firmware -
Intel Xeon Platinum 8270 Firmware -
Intel Xeon Platinum 8276 Firmware -
Intel Xeon Platinum 8276l Firmware -
Intel Xeon Platinum 8276m Firmware -
Intel Xeon Platinum 8280 Firmware -
Intel Xeon Platinum 8280l Firmware -
Intel Xeon Platinum 8280m Firmware -
Intel Xeon Platinum 9220 Firmware -
Intel Xeon Platinum 9221 Firmware -
Intel Xeon Platinum 9222 Firmware -
Intel Xeon Platinum 9242 Firmware -
Intel Xeon Platinum 9282 Firmware -
Intel Xeon Gold 5215 Firmware -
Intel Xeon Gold 5215l Firmware -
Intel Xeon Gold 5215m Firmware -
NA
CVE-2022-2869
libtiff's tiffcrop tool has a uint32_t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a crafted file to tiffcrop could trigger this flaw, most likely by tricking a user into opening the crafted file wi...
Libtiff Libtiff
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Debian Debian Linux 10.0
Debian Debian Linux 11.0
NA
CVE-2022-1012
A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an malicious user to information leak and may cause a denial of service problem.
Linux Linux Kernel 5.18
Linux Linux Kernel
NA
CVE-2022-36946
nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel up to and including 5.18.14 allows remote malicious users to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negat...
Linux Linux Kernel
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Hci Compute Node -
Netapp Solidfire \\& Hci Storage Node -
Netapp Solidfire Enterprise Sds -
2 Github repositories
2.1
CVSSv2
CVE-2022-23825
Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to information disclosure.
Debian Debian Linux 11.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Amd Athlon X4 750 Firmware -
Amd Athlon X4 760k Firmware -
Amd Athlon X4 830 Firmware -
Amd Athlon X4 835 Firmware -
Amd Athlon X4 840 Firmware -
Amd Athlon X4 845 Firmware -
Amd Athlon X4 860k Firmware -
Amd Athlon X4 870k Firmware -
Amd Athlon X4 880k Firmware -
Amd Athlon X4 940 Firmware -
Amd Athlon X4 950 Firmware -
Amd Athlon X4 970 Firmware -
Amd Ryzen Threadripper Pro 3995wx Firmware -
Amd Ryzen Threadripper Pro 3795wx Firmware -
Amd Ryzen Threadripper Pro 3955wx Firmware -
Amd Ryzen Threadripper Pro 3945wx Firmware -
Amd Ryzen Threadripper Pro 5955wx Firmware -
Amd Ryzen Threadripper Pro 5965wx Firmware -
Amd Ryzen Threadripper Pro 5945wx Firmware -
2 Articles
NA
CVE-2021-4135
A memory leak vulnerability was found in the Linux kernel's eBPF for the Simulated networking device driver in the way user uses BPF for the device such that function nsim_map_alloc_elem being called. A local user could use this flaw to get unauthorized access to some data.
Linux Linux Kernel 5.16
Linux Linux Kernel
2.1
CVSSv2
CVE-2022-29900
Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions.
Xen Xen -
Debian Debian Linux 11.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Amd Athlon X4 750 Firmware -
Amd Athlon X4 760k Firmware -
Amd Athlon X4 830 Firmware -
Amd Athlon X4 835 Firmware -
Amd Athlon X4 840 Firmware -
Amd Athlon X4 845 Firmware -
Amd Athlon X4 860k Firmware -
Amd Athlon X4 870k Firmware -
Amd Athlon X4 880k Firmware -
Amd Athlon X4 940 Firmware -
Amd Athlon X4 950 Firmware -
Amd Athlon X4 970 Firmware -
Amd Ryzen Threadripper Pro 3995wx Firmware -
Amd Ryzen Threadripper Pro 3795wx Firmware -
Amd Ryzen Threadripper Pro 3955wx Firmware -
Amd Ryzen Threadripper Pro 3945wx Firmware -
Amd Ryzen Threadripper Pro 5955wx Firmware -
Amd Ryzen Threadripper Pro 5965wx Firmware -
1 Article
1.9
CVSSv2
CVE-2022-29901
Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code exe...
Intel Core I7-6500u Firmware -
Intel Core I7-6510u Firmware -
Intel Core I7-6560u Firmware -
Intel Core I7-6567u Firmware -
Intel Core I7-6600u Firmware -
Intel Core I7-6650u Firmware -
Intel Core I7-6660u Firmware -
Intel Core I7-6700 Firmware -
Intel Core I7-6700hq Firmware -
Intel Core I7-6700k Firmware -
Intel Core I7-6700t Firmware -
Intel Core I7-6700te Firmware -
Intel Core I7-6770hq Firmware -
Intel Core I7-6820eq Firmware -
Intel Core I7-6820hk Firmware -
Intel Core I7-6820hq Firmware -
Intel Core I7-6822eq Firmware -
Intel Core I7-6870hq Firmware -
Intel Core I7-6920hq Firmware -
Intel Core I7-6970hq Firmware -
Intel Core I7-8550u Firmware -
Intel Core I7-8559u Firmware -
1 Article
5
CVSSv2
CVE-2022-2097
AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of...
Openssl Openssl
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Active Iq Unified Manager -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Siemens Sinec Ins 1.0
Siemens Sinec Ins
Debian Debian Linux 10.0
Debian Debian Linux 11.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »