Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
desktop vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-1999-1138
SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable.
Sco Openserver 3.0
Sco Unix System V386 3.2 Operating System
Sco Open Desktop 3.0
Sco Open Desktop Lite 3.0
Sco Unix System V386 3.2 Operating System 2.0
Sco Unix System V386 3.2 Operating System 4.0
Sco Open Desktop 1.0
Sco Open Desktop 2.0
Sco Unix System V386 3.2 Operating System 4.x
356
VMScore
CVE-2004-2493
Directory traversal vulnerability in Groupmax World Wide Web (GmaxWWW) 2 and 3, and Desktop 5, 6, and Desktop for Jichitai allows remote authenticated users to read arbitrary .html files via the template name parameter.
Hitachi Groupmax World Wide Web 03 11 B
Hitachi Groupmax World Wide Web 2
Hitachi Groupmax World Wide Web Desktop 06 50 B
Hitachi Groupmax World Wide Web 02 20 A
Hitachi Groupmax World Wide Web 02 31 I
Hitachi Groupmax World Wide Web Desktop 05 11 F
Hitachi Groupmax World Wide Web Desktop 05 11 I
Hitachi Groupmax World Wide Web Desktop 06 51 B
Hitachi Groupmax World Wide Web Desktop 06 51 C
Hitachi Groupmax World Wide Web Desktop 06 52
Hitachi Groupmax World Wide Web Desktop 06 50 C
Hitachi Groupmax World Wide Web Desktop 5
Hitachi Groupmax World Wide Web Desktop 6
Hitachi Groupmax World Wide Web 02 00
Hitachi Groupmax World Wide Web 02 20
Hitachi Groupmax World Wide Web 3
Hitachi Groupmax World Wide Web Desktop 05 00
Hitachi Groupmax World Wide Web Desktop 06 51
Hitachi Groupmax World Wide Web Desktop Gold
Hitachi Groupmax World Wide Web 03 00
Hitachi Groupmax World Wide Web 03 10 H
Hitachi Groupmax World Wide Web Desktop 05 11 J
383
VMScore
CVE-2014-4232
Unspecified vulnerability in the Oracle Secure Global Desktop (SGD) component in Oracle Virtualization 4.63, 4.71, 5.0, and 5.1 allows remote malicious users to affect integrity via unknown vectors related to Workspace Web Application, a different vulnerability than CVE-2014-2463...
Oracle Virtualization 4.63
Oracle Virtualization 4.71
Oracle Virtualization 5.0
Oracle Virtualization Secure Global Desktop 4.71
Oracle Virtualization Secure Global Desktop 5.10
Oracle Virtualization 5.1
Oracle Virtualization Secure Global Desktop 4.63
Oracle Virtualization Secure Global Desktop 5.0
NA
CVE-2023-28122
A local privilege escalation (LPE) vulnerability in UI Desktop for Windows (Version 0.59.1.71 and previous versions) allows a malicious actor with local access to a Windows device running said application to submit arbitrary commands as SYSTEM.This vulnerability is fixed in Versi...
Ui Desktop
NA
CVE-2023-28123
A permission misconfiguration in UI Desktop for Windows (Version 0.59.1.71 and previous versions) could allow an user to hijack VPN credentials while UID VPN is starting.This vulnerability is fixed in Version 0.62.3 and later.
Ui Desktop
NA
CVE-2023-28124
Improper usage of symmetric encryption in UI Desktop for Windows (Version 0.59.1.71 and previous versions) could allow users with access to UI Desktop configuration files to decrypt their content.This vulnerability is fixed in Version 0.62.3 and later.
Ui Desktop
NA
CVE-2022-31647
Docker Desktop prior to 4.6.0 on Windows allows malicious users to delete any file through the hyperv/destroy dockerBackendV2 API via a symlink in the DataFolder parameter, a different vulnerability than CVE-2022-26659.
Docker Desktop
NA
CVE-2022-38730
Docker Desktop for Windows prior to 4.6 allows malicious users to overwrite any file through the windowscontainers/start dockerBackendV2 API by controlling the data-root field inside the DaemonJSON field in the WindowsContainerStartRequest class. This allows exploiting a symlink ...
Docker Desktop
454
VMScore
CVE-2022-23597
Element Desktop is a Matrix client for desktop platforms with Element Web at its core. Element Desktop prior to 1.9.7 is vulnerable to a remote program execution bug with user interaction. The exploit is non-trivial and requires clicking on a malicious link, followed by another b...
Element Desktop
1 Github repository
383
VMScore
CVE-2022-26877
Asana Desktop prior to 1.6.0 allows remote malicious users to exfiltrate local files if they can trick the Asana desktop app into loading a malicious web page.
Asana Desktop
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »