Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
protection engine vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-30632
Uncontrolled recursion in Glob in path/filepath before Go 1.17.12 and Go 1.18.4 allows an malicious user to cause a panic due to stack exhaustion via a path containing a large number of path separators.
Golang Go
7.5
CVSSv3
CVE-2022-30635
Uncontrolled recursion in Decoder.Decode in encoding/gob before Go 1.17.12 and Go 1.18.4 allows an malicious user to cause a panic due to stack exhaustion via a message which contains deeply nested structures.
Golang Go
7.5
CVSSv3
CVE-2022-28880
A Denial-of-Service vulnerability exists in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files it is possible that can crash the scanning engine. The exploit can be triggered remotely by an attacker.
F-secure Elements Endpoint Detection And Response
F-secure Elements Endpoint Protection
F-secure Atlant
F-secure Internet Gatekeeper
F-secure Linux Security
F-secure Linux Security 64
F-secure Cloud Protection For Salesforce
F-secure Elements Collaboration Protection
7.5
CVSSv3
CVE-2022-28878
A Denial-of-Service vulnerability exists in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed APK file it is possible that can crash the scanning engine.
F-secure Elements Endpoint Protection -
F-secure Cloud Protection For Salesforce -
F-secure Atlant -
F-secure Internet Gatekeeper -
F-secure Linux Security -
F-secure Linux Security 64 -
F-secure Elements Collaboration Protection -
7.5
CVSSv3
CVE-2022-28879
A Denial-of-Service (DoS) vulnerability exists in F-Secure Atlant and in certain WithSecure products whereby the scanning the aepack.dll component can crash the scanning engine.
F-secure Elements Endpoint Protection -
F-secure Cloud Protection For Salesforce -
F-secure Atlant -
F-secure Internet Gatekeeper -
F-secure Linux Security -
F-secure Linux Security 64 -
F-secure Elements Collaboration Protection -
7.5
CVSSv3
CVE-2022-28876
A Denial-of-Service (DoS) vulnerability exists in F-Secure Atlant and in certain WithSecure products whereby the scanning the aeheur.dll component can crash the scanning engine. The exploit can be triggered remotely by an attacker.
F-secure Atlant
F-secure Linux Security
F-secure Internet Gatekeeper
F-secure Cloud Protection For Salesforce
F-secure Elements Collaboration Protection
F-secure Elements Endpoint Protection
7.5
CVSSv3
CVE-2022-28874
Multiple Denial-of-Service vulnerabilities exists in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files cause memory corruption and heap buffer overflow which eventually can crash the scanning engine. The exploit can be triggered remotely ...
F-secure Atlant
F-secure Linux Security
F-secure Elements Endpoint Protection
Withsecure Cloud Protection For Salesforce
Withsecure Elements Collaboration Protection
7.5
CVSSv3
CVE-2022-29885
The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the EncryptInterceptor ...
Apache Tomcat 10.1.0
Apache Tomcat
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Oracle Hospitality Cruise Shipboard Property Management System 20.2.1
5 Github repositories
7.5
CVSSv3
CVE-2022-30293
In WebKitGTK up to and including 2.36.0 (and WPE WebKit), there is a heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer in WebCore/platform/graphics/texmap/TextureMapperLayer.cpp.
Webkitgtk Webkitgtk
Debian Debian Linux 10.0
Debian Debian Linux 11.0
7.5
CVSSv3
CVE-2021-37136
The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data (which affects the allocation size used during decompression). All users of Bzip2Decoder are affected. The malicious input can trigger an OOME and so a DoS attack
Netty Netty
Quarkus Quarkus
Oracle Peoplesoft Enterprise Peopletools 8.48
Oracle Webcenter Portal 12.2.1.3.0
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Banking Digital Experience 18.2
Oracle Banking Digital Experience 18.3
Oracle Banking Digital Experience 19.1
Oracle Banking Digital Experience 18.1
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Coherence 12.2.1.4.0
Oracle Webcenter Portal 12.2.1.4.0
Oracle Coherence 14.1.1.0.0
Oracle Banking Digital Experience 19.2
Oracle Banking Digital Experience 20.1
Oracle Commerce Guided Search 11.3.2
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Banking Digital Experience 21.1
Oracle Banking Apis
Oracle Banking Apis 19.1
Oracle Banking Apis 19.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »