Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vm server vulnerabilities and exploits
(subscribe to this query)
392
VMScore
CVE-2020-25285
A race condition between hugetlb sysctl handlers in mm/hugetlb.c in the Linux kernel prior to 5.8.8 could be used by local malicious users to corrupt memory, cause a NULL pointer dereference, or possibly have unspecified other impact, aka CID-17743798d812.
Linux Linux Kernel
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
393
VMScore
CVE-2020-25212
A TOCTOU mismatch in the NFS client code in the Linux kernel prior to 5.8.3 could be used by local malicious users to corrupt memory or possibly have unspecified other impact because a size check is in fs/nfs/nfs4proc.c instead of fs/nfs/nfs4xdr.c, aka CID-b4487b935452.
Linux Linux Kernel
Debian Debian Linux 9.0
Opensuse Leap 15.1
Opensuse Leap 15.2
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
409
VMScore
CVE-2020-2968
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c. Difficult to exploit vulnerability allows low privileged attacker having Create Session, Create Procedure privilege with network a...
Oracle Database Server 11.2.0.4
Oracle Database Server 12.1.0.2
Oracle Database Server 12.2.0.1
Oracle Database Server 18c
Oracle Database Server 19c
829
VMScore
CVE-2020-2021
When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option is disabled (unchecked), improper verification of signatures in PAN-OS SAML authentication enables an unauthenticated network-based malicious...
Paloaltonetworks Pan-os
3 Github repositories
1 Article
187
VMScore
CVE-2020-0543
Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Intel Core I7-6700k -
Intel Core I7-4500u -
Intel Core I7-3632qm -
Intel Xeon E3-1240 V5 -
Intel Core I3-8145u -
Intel Core I3-8300 -
Intel Core I3-8100t -
Intel Core I3-8300t -
Intel Core I3-8109u -
Intel Core I3-8130u -
Intel Core I3-8100 -
Intel Core I3-8350k -
Intel Core I3-7167u -
Intel Core I3-7100h -
Intel Core I3-7100u -
Intel Core I3-6100u -
Intel Core I3-6100h -
Intel Core I3-6167u -
Intel Core I3-6100 -
Intel Core I3-5015u -
Intel Core I3-5020u -
Intel Core I3-5005u -
1 Github repository
1 Article
890
VMScore
CVE-2020-3258
Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could allow an unauthenticated, remote attacker or an authenticated, local malicious user to execut...
Cisco Ios 15.8\\(3\\)m2
Cisco Ios 15.8\\(9\\)
Cisco Ios 15.9
890
VMScore
CVE-2020-3198
Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could allow an unauthenticated, remote attacker or an authenticated, local malicious user to execut...
Cisco Ios 12.2\\(60\\)ez16
Cisco Ios 15.0\\(2\\)sg11a
Cisco Ios 15.3\\(3\\)jaa1
Cisco Ios 15.3\\(3\\)jpj
Cisco Ios 15.4\\(1\\)cg
Cisco Ios 15.4\\(2\\)cg
Cisco Ios 15.4\\(3\\)m
Cisco Ios 15.4\\(3\\)m1
Cisco Ios 15.4\\(3\\)m2
Cisco Ios 15.4\\(3\\)m3
Cisco Ios 15.4\\(3\\)m4
Cisco Ios 15.4\\(3\\)m5
Cisco Ios 15.4\\(3\\)m6
Cisco Ios 15.4\\(3\\)m6a
Cisco Ios 15.4\\(3\\)m7
Cisco Ios 15.4\\(3\\)m8
Cisco Ios 15.4\\(3\\)m9
Cisco Ios 15.4\\(3\\)m10
Cisco Ios 15.5\\(1\\)t
Cisco Ios 15.5\\(1\\)t2
Cisco Ios 15.5\\(1\\)t3
Cisco Ios 15.5\\(1\\)t4
739
VMScore
CVE-2020-3205
A vulnerability in the implementation of the inter-VM channel of Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could allow an unauthenticated, adjacent malicious user to exe...
Cisco Ios 12.2\\(60\\)ez16
Cisco Ios 15.0\\(2\\)sg11a
Cisco Ios 15.2\\(4\\)jaz1
Cisco Ios 15.3\\(3\\)jaa1
Cisco Ios 15.3\\(3\\)jpi
Cisco Ios 15.3\\(3\\)jpj
Cisco Ios 15.4\\(1\\)cg
Cisco Ios 15.4\\(2\\)cg
Cisco Ios 15.4\\(3\\)m
Cisco Ios 15.4\\(3\\)m1
Cisco Ios 15.4\\(3\\)m2
Cisco Ios 15.4\\(3\\)m3
Cisco Ios 15.4\\(3\\)m4
Cisco Ios 15.4\\(3\\)m5
Cisco Ios 15.4\\(3\\)m6
Cisco Ios 15.4\\(3\\)m6a
Cisco Ios 15.4\\(3\\)m7
Cisco Ios 15.4\\(3\\)m8
Cisco Ios 15.4\\(3\\)m9
Cisco Ios 15.4\\(3\\)m10
Cisco Ios 15.5\\(1\\)t
Cisco Ios 15.5\\(1\\)t2
320
VMScore
CVE-2020-10751
A flaw was found in the Linux kernels SELinux LSM hook implementation before version 5.7, where it incorrectly assumed that an skb would only contain a single netlink message. The hook would incorrectly only validate the first netlink message in the skb and allow or deny the rest...
Kernel Selinux
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server 8.0
383
VMScore
CVE-2020-10711
A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions prior to 5.7. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the' ebitmap_net...
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Redhat Virtualization Host 4.0
Redhat Enterprise Linux Server Tus 7.4
Redhat Enterprise Linux Aus 7.4
Redhat Enterprise Linux 8.0
Redhat Messaging Realtime Grid 2.0
Redhat 3scale 2.0
Redhat Openstack 13
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Leap 15.2
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »