Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
desktop vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2020-8263
A vulnerability in the authenticated user web interface of Pulse Connect Secure < 9.1R9 could allow malicious users to conduct Cross-Site Scripting (XSS) through the CGI file.
Pulsesecure Pulse Secure Desktop Client 9.1
Pulsesecure Pulse Secure Desktop Client
9.8
CVSSv3
CVE-2014-5007
Directory traversal vulnerability in the agentLogUploader servlet in ZOHO ManageEngine Desktop Central (DC) and Desktop Central Managed Service Providers (MSP) edition prior to 9 build 90055 allows remote malicious users to write to and execute arbitrary files as SYSTEM via a .. ...
Zohocorp Manageengine Desktop Central
Zohocorp Manageengine Desktop Central Managed Service Providers
3 EDB exploits
8.1
CVSSv3
CVE-2021-2434
Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite (component: Application Service). Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network ac...
Oracle Web Applications Desktop Integrator 12.1.3
Oracle Web Applications Desktop Integrator
7.8
CVSSv3
CVE-2020-8248
A vulnerability in the Pulse Secure Desktop Client (Linux) < 9.1R9 could allow local malicious users to escalate privilege.
Pulsesecure Pulse Secure Desktop Client 9.1
Pulsesecure Pulse Secure Desktop Client
1 Github repository
7.2
CVSSv3
CVE-2020-8260
A vulnerability in the Pulse Connect Secure < 9.1R9 admin web interface could allow an authenticated malicious user to perform an arbitrary code execution using uncontrolled gzip extraction.
Pulsesecure Pulse Secure Desktop Client 9.1
Pulsesecure Pulse Secure Desktop Client
1 Article
9.1
CVSSv3
CVE-2021-44757
Zoho ManageEngine Desktop Central prior to 10.1.2137.9 and Desktop Central MSP prior to 10.1.2137.9 allow malicious users to bypass authentication, and read sensitive information or upload an arbitrary ZIP archive to the server.
Zohocorp Manageengine Desktop Central
Zohocorp Manageengine Desktop Central Managed Service Providers
NA
CVE-2014-4232
Unspecified vulnerability in the Oracle Secure Global Desktop (SGD) component in Oracle Virtualization 4.63, 4.71, 5.0, and 5.1 allows remote malicious users to affect integrity via unknown vectors related to Workspace Web Application, a different vulnerability than CVE-2014-2463...
Oracle Virtualization 5.0
Oracle Virtualization Secure Global Desktop 4.63
Oracle Virtualization 4.71
Oracle Virtualization Secure Global Desktop 5.10
Oracle Virtualization Secure Global Desktop 5.0
Oracle Virtualization 4.63
Oracle Virtualization Secure Global Desktop 4.71
Oracle Virtualization 5.1
NA
CVE-2012-4655
The WebLaunch feature in Cisco Secure Desktop prior to 3.6.6020 does not properly validate binaries that are received by the downloader process, which allows remote malicious users to execute arbitrary code via vectors involving (1) ActiveX or (2) Java components, aka Bug IDs CSC...
Cisco Secure Desktop 3.1.1.33
Cisco Secure Desktop 3.6.3002
Cisco Secure Desktop 3.6.185
Cisco Secure Desktop 3.5
Cisco Secure Desktop 3.3
Cisco Secure Desktop 3.6.2002
Cisco Secure Desktop 3.1.1.45
Cisco Secure Desktop 3.4.2048
Cisco Secure Desktop 3.6.181
Cisco Secure Desktop 3.6.1001
Cisco Secure Desktop 3.1.1
Cisco Secure Desktop 3.5.841
Cisco Secure Desktop 3.5.2008
Cisco Secure Desktop 3.2
Cisco Secure Desktop 3.5.2001
Cisco Secure Desktop 3.2.1
Cisco Secure Desktop 3.4
Cisco Secure Desktop 3.1.1.27
Cisco Secure Desktop 3.5.1077
Cisco Secure Desktop 3.4.2
Cisco Secure Desktop 3.6.5005
Cisco Secure Desktop 3.6.4021
8.1
CVSSv3
CVE-2019-15637
Numerous Tableau products are vulnerable to XXE via a malicious workbook, extension, or data source, leading to information disclosure or a DoS. This affects Tableau Server, Tableau Desktop, Tableau Reader, and Tableau Public Desktop.
Tableau Tableau Server
Tableau Tableau Desktop
Tableau Tableau Reader
Tableau Tableau Public Desktop
1 EDB exploit
8.1
CVSSv3
CVE-2018-2574
Vulnerability in the Siebel CRM Desktop component of Oracle Siebel CRM (subcomponent: Outlook Client). Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel CRM Des...
Oracle Siebel Customer Relationship Management Desktop 16.0
Oracle Siebel Customer Relationship Management Desktop 17.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »