Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tcp vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-33719
A vulnerability has been identified in SIPROTEC 5 relays with CPU variants CP050 (All versions < V8.80), SIPROTEC 5 relays with CPU variants CP100 (All versions < V8.80), SIPROTEC 5 relays with CPU variants CP300 (All versions < V8.80). Specially crafted packets sent to ...
Siemens Siprotec 5 With Cpu Variant Cp050
Siemens Siprotec 5 With Cpu Variant Cp100
Siemens Siprotec 5 With Cpu Variant Cp300
9.8
CVSSv3
CVE-2021-31226
An issue exists in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST request, due to lack of size validation. This vulnerability requires the malicious user to send a crafted HTTP POST request with a URI longer than 50 by...
Hcc-embedded Interniche 4.0.1
9.8
CVSSv3
CVE-2020-25928
The DNS feature in InterNiche NicheStack TCP/IP 4.0.1 is affected by: Buffer Overflow. The impact is: execute arbitrary code (remote). The component is: DNS response processing functions: dns_upcall(), getoffset(), dnc_set_answer(). The attack vector is: a specific DNS response p...
Hcc-embedded Nichestack Tcp\\/ip 4.0.1
9.8
CVSSv3
CVE-2021-37165
A buffer overflow issue exists in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When a message is sent to the HMI TCP socket, it is forwarded to the hmiProcessMsg function through the pendingQ, and m...
Swisslog-healthcare Hmi-3 Control Panel Firmware
9.8
CVSSv3
CVE-2020-7388
Sage X3 Unauthenticated Remote Command Execution (RCE) as SYSTEM in AdxDSrv.exe component. By editing the client side authentication request, an attacker can bypass credential validation. While exploiting this does require knowledge of the installation path, that information can ...
Sage Adxadmin
1 Github repository
1 Article
9.8
CVSSv3
CVE-2021-35522
A Buffer Overflow in Thrift command handlers in IDEMIA Morpho Wave Compact and VisionPass devices prior to 2.6.2, Sigma devices prior to 4.9.4, and MA VP MD devices prior to 4.9.7 allows remote malicious users to achieve code execution, denial of services, and information disclos...
Idemia Morphowave Compact Mdpi Firmware
Idemia Morphowave Compact Mdpi-m Firmware
Idemia Visionpass Mdpi Firmware
Idemia Visionpass Mdpi-m Firmware
Idemia Visionpass Md Firmware -
Idemia Morphowave Compact Md Firmware -
Idemia Sigma Lite Firmware -
Idemia Sigma Lite\\+ Firmware -
Idemia Sigma Wide Firmware -
Idemia Sigma Extreme Firmware -
Idemia Ma Vp Md Firmware -
9.8
CVSSv3
CVE-2021-34690
iDrive RemotePC prior to 7.6.48 on Windows allows authentication bypass. A remote and unauthenticated attacker can bypass cloud authentication to connect and control a system via TCP port 5970 and 5980.
Idrive Remotepc
9.8
CVSSv3
CVE-2021-28809
An improper access control vulnerability has been reported to affect certain legacy versions of HBS 3. If exploited, this vulnerability allows malicious users to compromise the security of the operating system.QNAP have already fixed this vulnerability in the following versions o...
Qnap Hybrid Backup Sync
9.8
CVSSv3
CVE-2021-21281
Contiki-NG is an open-source, cross-platform operating system for internet of things devices. A buffer overflow vulnerability exists in Contiki-NG versions before 4.6. After establishing a TCP socket using the tcp-socket library, it is possible for the remote end to send a packet...
Contiki-ng Contiki-ng
9.8
CVSSv3
CVE-2021-32928
The Sentinel LDK Run-Time Environment installer (Versions 7.6 and prior) adds a firewall rule named “Sentinel License Manager” that allows incoming connections from private networks using TCP Port 1947. While uninstalling, the uninstaller fails to close Port 1947.
Thalesgroup Sentinel Ldk Run-time Environment
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »