Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
system recovery vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-4046
The Dell KACE K2000 System Deployment Appliance stores the recovery account password in cleartext within a PHP script, which allows context-dependent malicious users to obtain sensitive information by examining script source code.
Dell Kace K2000 Systems Deployment Appliance
6.8
CVSSv3
CVE-2022-23691
A vulnerability exists in certain AOS-CX switch models which could allow an attacker with access to the recovery console to bypass normal authentication. A successful exploit allows an malicious user to bypass system authentication and achieve total switch compromise in ArubaOS-C...
Arubanetworks Aos-cx
7.5
CVSSv3
CVE-2021-20612
Lack of administrator control over security vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.14 and prior, FX3U-ENET-L Firmware version 1.14 and prior and FX3U-ENET-P502 Firmware version 1.14 and prior allows a remote unauthenticated malicious user to cause a denial-...
Mitsubishielectric Fx3u-enet Firmware
Mitsubishielectric Fx3u-enet-l Firmware
Mitsubishielectric Fx3u-enet-p502 Firmware
7.6
CVSSv3
CVE-2020-5361
Select Dell Client Commercial and Consumer platforms support a BIOS password reset capability that is designed to assist authorized customers who forget their passwords. Dell is aware of unauthorized password generation tools that can generate BIOS recovery passwords. The tools, ...
Dell Cpg Bios
NA
CVE-2006-0363
The "Remember my Password" feature in MSN Messenger 7.5 stores passwords in an encrypted format under the HKEY_CURRENT_USER\Software\Microsoft\IdentityCRL\Creds registry key, which might allow local users to obtain the original passwords via a program that calls CryptUn...
Microsoft Msn Messenger 7.5
7.8
CVSSv3
CVE-2021-26431
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
Microsoft Windows 10 2004
Microsoft Windows Server 2016 2004
Microsoft Windows 10 20h2
Microsoft Windows Server 2016 20h2
Microsoft Windows 10 21h1
NA
CVE-2024-3829
qdrant/qdrant version 1.9.0-dev is vulnerable to arbitrary file read and write during the snapshot recovery process. Attackers can exploit this vulnerability by manipulating snapshot files to include symlinks, leading to arbitrary file read by adding a symlink that points to a de...
NA
CVE-2006-3892
The Management Console server in EMC NetWorker (formerly Legato NetWorker) 7.3.2 before Jumbo Update 1 uses weak authentication, which allows remote malicious users to execute arbitrary commands.
Emc Networker 7.3.2
6.8
CVSSv3
CVE-2018-6242
Some NVIDIA Tegra mobile processors released before 2016 contain a buffer overflow vulnerability in BootROM Recovery Mode (RCM). An attacker with physical access to the device's USB and the ability to force the device to reboot into RCM could exploit the vulnerability to exe...
Nvidia Tegra Bootrom Rcm -
10 Github repositories
NA
CVE-2006-4201
Unspecified vulnerability in the backup agent and Cell Manager in HP OpenView Storage Data Protector 5.1 and 5.5 prior to 20060810 allows remote malicious users to execute arbitrary code on an agent via unspecified vectors related to authentication and input validation.
Hp Openview Storage Data Protector
Hp Openview Storage Data Protector 5.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »