Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
desktop vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-1138
SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable.
Sco Openserver 3.0
Sco Unix System V386 3.2 Operating System
Sco Open Desktop 3.0
Sco Open Desktop Lite 3.0
Sco Unix System V386 3.2 Operating System 2.0
Sco Unix System V386 3.2 Operating System 4.0
Sco Open Desktop 1.0
Sco Open Desktop 2.0
Sco Unix System V386 3.2 Operating System 4.x
NA
CVE-2004-2493
Directory traversal vulnerability in Groupmax World Wide Web (GmaxWWW) 2 and 3, and Desktop 5, 6, and Desktop for Jichitai allows remote authenticated users to read arbitrary .html files via the template name parameter.
Hitachi Groupmax World Wide Web 03 11 B
Hitachi Groupmax World Wide Web 2
Hitachi Groupmax World Wide Web Desktop 06 50 B
Hitachi Groupmax World Wide Web 02 20 A
Hitachi Groupmax World Wide Web 02 31 I
Hitachi Groupmax World Wide Web Desktop 05 11 F
Hitachi Groupmax World Wide Web Desktop 05 11 I
Hitachi Groupmax World Wide Web Desktop 06 51 B
Hitachi Groupmax World Wide Web Desktop 06 51 C
Hitachi Groupmax World Wide Web Desktop 06 52
Hitachi Groupmax World Wide Web Desktop 06 50 C
Hitachi Groupmax World Wide Web Desktop 5
Hitachi Groupmax World Wide Web Desktop 6
Hitachi Groupmax World Wide Web 02 00
Hitachi Groupmax World Wide Web 02 20
Hitachi Groupmax World Wide Web 3
Hitachi Groupmax World Wide Web Desktop 05 00
Hitachi Groupmax World Wide Web Desktop 06 51
Hitachi Groupmax World Wide Web Desktop Gold
Hitachi Groupmax World Wide Web 03 00
Hitachi Groupmax World Wide Web 03 10 H
Hitachi Groupmax World Wide Web Desktop 05 11 J
NA
CVE-2014-4232
Unspecified vulnerability in the Oracle Secure Global Desktop (SGD) component in Oracle Virtualization 4.63, 4.71, 5.0, and 5.1 allows remote malicious users to affect integrity via unknown vectors related to Workspace Web Application, a different vulnerability than CVE-2014-2463...
Oracle Virtualization 4.63
Oracle Virtualization 4.71
Oracle Virtualization 5.0
Oracle Virtualization Secure Global Desktop 4.71
Oracle Virtualization Secure Global Desktop 5.10
Oracle Virtualization 5.1
Oracle Virtualization Secure Global Desktop 4.63
Oracle Virtualization Secure Global Desktop 5.0
6.5
CVSSv3
CVE-2023-28997
The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server. Starting with version 3.0.0 and prior to version 3.6.5, a malicious server administrator can recover and modify the contents of end-to-end encrypted files. Users should upgrade the Nextcloud Deskto...
Nextcloud Desktop
6.1
CVSSv3
CVE-2023-28998
The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server. Starting with version 3.0.0 and prior to version 3.6.5, a malicious server administrator can gain full access to an end-to-end encrypted folder. They can decrypt files, recover the folder structure...
Nextcloud Desktop
6.5
CVSSv3
CVE-2023-29000
The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server. Starting with version 3.0.0 and prior to version 3.7.0, by trusting that the server will return a certificate that belongs to the keypair of the user, a malicious server could get the desktop clien...
Nextcloud Desktop
6.7
CVSSv3
CVE-2020-8140
A code injection in Nextcloud Desktop Client 2.6.2 for macOS allowed to load arbitrary code when starting the client with DYLD_INSERT_LIBRARIES set in the environment.
Nextcloud Desktop
7.5
CVSSv3
CVE-2020-8225
A cleartext storage of sensitive information in Nextcloud Desktop Client 2.6.4 gave away information about used proxies and their authentication credentials.
Nextcloud Desktop
6.8
CVSSv3
CVE-2020-8227
Missing sanitization of a server response in Nextcloud Desktop Client 2.6.4 for Linux allowed a malicious Nextcloud Server to store files outside of the dedicated sync directory.
Nextcloud Desktop
5.5
CVSSv3
CVE-2020-8230
A memory corruption vulnerability exists in NextCloud Desktop Client v2.6.4 where missing ASLR and DEP protections in for windows allowed to corrupt memory.
Nextcloud Desktop
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »