Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
protection engine vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-28881
A Denial-of-Service (DoS) vulnerability exists in F-Secure Atlant whereby the aerdl.dll component used in certain WithSecure products unpacker function crashes which leads to scanning engine crash. The exploit can be triggered remotely by an attacker.
F-secure Elements Endpoint Detection And Response
F-secure Elements Endpoint Protection
F-secure Atlant
F-secure Internet Gatekeeper
F-secure Linux Security
F-secure Linux Security 64
F-secure Cloud Protection For Salesforce
F-secure Elements Collaboration Protection
7.5
CVSSv3
CVE-2022-28880
A Denial-of-Service vulnerability exists in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files it is possible that can crash the scanning engine. The exploit can be triggered remotely by an attacker.
F-secure Elements Endpoint Detection And Response
F-secure Elements Endpoint Protection
F-secure Atlant
F-secure Internet Gatekeeper
F-secure Linux Security
F-secure Linux Security 64
F-secure Cloud Protection For Salesforce
F-secure Elements Collaboration Protection
7.5
CVSSv3
CVE-2022-28878
A Denial-of-Service vulnerability exists in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed APK file it is possible that can crash the scanning engine.
F-secure Elements Endpoint Protection -
F-secure Cloud Protection For Salesforce -
F-secure Atlant -
F-secure Internet Gatekeeper -
F-secure Linux Security -
F-secure Linux Security 64 -
F-secure Elements Collaboration Protection -
7.5
CVSSv3
CVE-2022-28879
A Denial-of-Service (DoS) vulnerability exists in F-Secure Atlant and in certain WithSecure products whereby the scanning the aepack.dll component can crash the scanning engine.
F-secure Elements Endpoint Protection -
F-secure Cloud Protection For Salesforce -
F-secure Atlant -
F-secure Internet Gatekeeper -
F-secure Linux Security -
F-secure Linux Security 64 -
F-secure Elements Collaboration Protection -
7.5
CVSSv3
CVE-2022-28876
A Denial-of-Service (DoS) vulnerability exists in F-Secure Atlant and in certain WithSecure products whereby the scanning the aeheur.dll component can crash the scanning engine. The exploit can be triggered remotely by an attacker.
F-secure Atlant
F-secure Linux Security
F-secure Internet Gatekeeper
F-secure Cloud Protection For Salesforce
F-secure Elements Collaboration Protection
F-secure Elements Endpoint Protection
7.5
CVSSv3
CVE-2022-28874
Multiple Denial-of-Service vulnerabilities exists in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files cause memory corruption and heap buffer overflow which eventually can crash the scanning engine. The exploit can be triggered remotely ...
F-secure Atlant
F-secure Linux Security
F-secure Elements Endpoint Protection
Withsecure Cloud Protection For Salesforce
Withsecure Elements Collaboration Protection
7.5
CVSSv3
CVE-2022-29885
The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the EncryptInterceptor ...
Apache Tomcat 10.1.0
Apache Tomcat
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Oracle Hospitality Cruise Shipboard Property Management System 20.2.1
5 Github repositories
7.5
CVSSv3
CVE-2022-30293
In WebKitGTK up to and including 2.36.0 (and WPE WebKit), there is a heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer in WebCore/platform/graphics/texmap/TextureMapperLayer.cpp.
Webkitgtk Webkitgtk
Debian Debian Linux 10.0
Debian Debian Linux 11.0
7.5
CVSSv3
CVE-2021-37136
The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data (which affects the allocation size used during decompression). All users of Bzip2Decoder are affected. The malicious input can trigger an OOME and so a DoS attack
Netty Netty
Quarkus Quarkus
Oracle Peoplesoft Enterprise Peopletools 8.48
Oracle Webcenter Portal 12.2.1.3.0
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Banking Digital Experience 18.2
Oracle Banking Digital Experience 18.3
Oracle Banking Digital Experience 19.1
Oracle Banking Digital Experience 18.1
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Coherence 12.2.1.4.0
Oracle Webcenter Portal 12.2.1.4.0
Oracle Coherence 14.1.1.0.0
Oracle Banking Digital Experience 19.2
Oracle Banking Digital Experience 20.1
Oracle Commerce Guided Search 11.3.2
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Banking Digital Experience 21.1
Oracle Banking Apis
Oracle Banking Apis 19.1
Oracle Banking Apis 19.2
7.5
CVSSv3
CVE-2021-0280
Due to an Improper Initialization vulnerability in Juniper Networks Junos OS on PTX platforms and QFX10K Series with Paradise (PE) chipset-based line cards, ddos-protection configuration changes made from the CLI will not take effect as expected beyond the default DDoS (Distribut...
Juniper Junos 17.4
Juniper Junos 18.2
Juniper Junos 18.3
Juniper Junos 18.4
Juniper Junos 19.1
Juniper Junos 19.2
Juniper Junos 19.3
Juniper Junos 19.4
Juniper Junos 20.1
Juniper Junos 20.2
Juniper Junos 20.3
Juniper Junos 20.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »