Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nova vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-20221
Mikrotik RouterOs prior to 6.44.6 (long-term tree) suffers from an uncontrolled resource consumption vulnerability in the /nova/bin/cerm process. An authenticated remote attacker can cause a Denial of Service due to overloading the systems CPU.
Mikrotik Routeros
6.5
CVSSv3
CVE-2020-20253
Mikrotik RouterOs prior to 6.47 (stable tree) suffers from a divison by zero vulnerability in the /nova/bin/lcdstat process. An authenticated remote attacker can cause a Denial of Service due to a divide by zero error.
Mikrotik Routeros
6.5
CVSSv3
CVE-2020-20265
Mikrotik RouterOs prior to 6.47 (stable tree) suffers from a memory corruption vulnerability in the /ram/pckg/wireless/nova/bin/wireless process. An authenticated remote attacker can cause a Denial of Service due via a crafted packet.
Mikrotik Routeros
NA
CVE-2013-4497
The XenAPI backend in OpenStack Compute (Nova) Folsom, Grizzly, and Havana prior to 2013.2 does not properly apply security groups (1) when resizing an image or (2) during live migration, which allows remote malicious users to bypass intended restrictions.
Openstack Havana Havana-2
Openstack Havana Havana-1
Openstack Havana
Openstack Grizzly -
Openstack Folsom -
6.5
CVSSv3
CVE-2020-20225
Mikrotik RouterOs prior to 6.47 (stable tree) suffers from an assertion failure vulnerability in the /nova/bin/user process. An authenticated remote attacker can cause a Denial of Service due to an assertion failure via a crafted packet.
Mikrotik Routeros
6.5
CVSSv3
CVE-2020-20211
Mikrotik RouterOs 6.44.5 (long-term tree) suffers from an assertion failure vulnerability in the /nova/bin/console process. An authenticated remote attacker can cause a Denial of Service due to an assertion failure via a crafted packet.
Mikrotik Routeros 6.44.5
NA
CVE-2010-3204
Multiple PHP remote file inclusion vulnerabilities in Pecio CMS 2.0.5 allow remote malicious users to execute arbitrary PHP code via a URL in the template parameter to (1) post.php, (2) article.php, (3) blog.php, or (4) home.php in pec_templates/nova-blue/.
Pecio-cms Pecio Cms 2.0.5
1 EDB exploit
NA
CVE-2015-1950
IBM PowerVC Standard Edition 1.2.2.1 up to and including 1.2.2.2 does not require authentication for access to the Python interpreter with nova credentials, which allows KVM guest OS users to discover certain PowerVC credentials and bypass intended access restrictions via unspeci...
Ibm Powervc 1.2.2.1
Ibm Powervc 1.2.2.2
6.5
CVSSv3
CVE-2020-20262
Mikrotik RouterOs prior to 6.47 (stable tree) suffers from an assertion failure vulnerability in the /ram/pckg/security/nova/bin/ipsec process. An authenticated remote attacker can cause a Denial of Service due to an assertion failure via a crafted packet.
Mikrotik Routeros
5.3
CVSSv3
CVE-2018-7956
Huawei VIP App is a mobile app for Malaysia customers that purchased P20 Series, Nova 3/3i and Mate 20. There is a vulnerability in versions prior to 4.0.5 that attackers can conduct bruteforce to the VIP App Web Services to get user information.
Huawei Vip App
Huawei Mate 20 Firmware -
Huawei Nova 3i Firmware -
Huawei Nova 3 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »