Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unauthorized vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2015-6417
Cisco Videoscape Distribution Suite Service Manager (VDS-SM) 3.4.0 and previous versions does not always use RBAC for backend database access, which allows remote authenticated users to read or write to database entries via (1) the GUI or (2) a crafted HTTP request, aka Bug ID CS...
Cisco Videoscape Distribution Suite Service Manager 3.4.0
Cisco Videoscape Distribution Suite Service Manager 3.2.0
Cisco Videoscape Distribution Suite Service Manager 3.0.0
Cisco Videoscape Distribution Suite Service Manager 3.1.0
Cisco Videoscape Distribution Suite Service Manager 3.3.0
645
VMScore
CVE-2003-1521
Sun Java Plug-In 1.4 up to and including 1.4.2_02 allows remote malicious users to repeatedly access the floppy drive via the createXmlDocument method in the org.apache.crimson.tree.XmlDocument class, which violates the Java security model.
Sun Java Plug-in 1.4
Sun Java Plug-in 1.4.2
Sun Java Plug-in 1.4.2 01
Sun Java Plug-in 1.4.2 02
1 EDB exploit
409
VMScore
CVE-2013-2339
HP Smart Zero Core 4.3 and 4.3.1 on the t410 All-in-One Smart Zero Client, t410 Smart Zero Client, t510 Flexible Thin Client, t5565z Smart Client, t610 Flexible Thin Client, and t610 PLUS Flexible Thin Client allows local users to obtain sensitive information, modify data, or cau...
Hp Smart Zero Core 4.3
Hp Smart Zero Core 4.3.1
NA
CVE-2020-6913
A potential security vulnerability in the HP Sure Sense driver may allow Unauthorized Code Execution.
755
VMScore
CVE-2002-1217
Cross-Frame scripting vulnerability in the WebBrowser control as used in Internet Explorer 5.5 and 6.0 allows remote malicious users to execute arbitrary code, read arbitrary files, or conduct other unauthorized activities via script that accesses the Document property, which byp...
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
1 EDB exploit
935
VMScore
CVE-2010-2860
The EMC Celerra Network Attached Storage (NAS) appliance accepts external network traffic to IP addresses intended for an intranet network within the appliance, which allows remote malicious users to read, create, or modify arbitrary files in the user data directory via NFS reque...
Emc Celerra Network Attached Storage
1 EDB exploit
187
VMScore
CVE-2019-1600
A vulnerability in the file system permissions of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local malicious user to access sensitive information that is stored in the file system of an affected system. The vulnerability is due to improper implemen...
Cisco Firepower Extensible Operating System
Cisco Nx-os
765
VMScore
CVE-2003-0332
The ISAPI extension in BadBlue 1.7 up to and including 2.2, and possibly earlier versions, modifies the first two letters of a filename extension after performing a security check, which allows remote malicious users to bypass authentication via a filename with a .ats extension i...
Working Resources Inc. Badblue
1 EDB exploit
445
VMScore
CVE-2018-15429
A vulnerability in the web-based UI of Cisco HyperFlex HX Data Platform Software could allow an unauthenticated, remote malicious user to access sensitive information on an affected system. The vulnerability is due to a lack of proper input and authorization of HTTP requests. An ...
Cisco Hyperflex Hx Data Platform 3.0\\(1a\\)
Cisco Hyperflex Hx Data Platform 2.6\\(1d\\)
505
VMScore
CVE-2004-2451
Roger Wilco 1.4.1.6 and previous versions, or Roger Wilco Base Station 0.30a or earlier, allows remote malicious users to send audio to arbitrary channels, aka the "Voices from the deep" bug.
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »