Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Recent vulnerabilities and exploits

9.8
CVSSv3
CVE-2022-22997
Addressed a remote code execution vulnerability by resolving a command injection vulnerability and closing an AWS S3 bucket that potentially allowed an attacker to execute unsigned code on My Cloud Home devices....
Westerndigital My Cloud Home Duo FirmwareWesterndigital My Cloud Home Firmware
NA
CVE-2006-6433
Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 does not record accurate timestamps, which makes it easier for remote attackers to avoid detection when an audit tries to rely on these timestamps....
Xerox Workcentre 14.060.17.000Xerox Workcentre 12.060.17.000Xerox Workcentre 13.060.17.000
7.2
CVSSv3
CVE-2019-2433
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: XML Publisher). Supported versions that are affected are 8.55, 8.56 and 8.57. Easily exploitable vulnerability allows high privileged attacker with network access via...
Oracle Peoplesoft Enterprise Peopletools 8.55Oracle Peoplesoft Enterprise Peopletools 8.56Oracle Peoplesoft Enterprise Peopletools 8.57
6.1
CVSSv3
CVE-2019-2431
Vulnerability in the Oracle Argus Safety component of Oracle Health Sciences Applications (subcomponent: Console). Supported versions that are affected are 8.1 and 8.2. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise...
Oracle Argus Safety 8.2Oracle Argus Safety 8.1
7.8
CVSSv3
CVE-2021-46160
A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). Affected application contains an out of bounds write past the end of an allocated structure while parsing specially crafted NEU files. This could allow an...
Siemens Simcenter Femap 2020.2Siemens Simcenter Femap 2021.1
4.8
CVE-2022-35587
A cross-site scripting (XSS) issue in the Fork version 5.9.3 allows remote attackers to inject JavaScript via the "publish_on_date" Parameter...
Fork-cms Fork Cms 5.9.3
9.8
CVSSv3
CVE-2019-5390
A remote command injection vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09....
Hp Intelligent Management Center 7.3Hp Intelligent Management Center
NA
CVE-2006-5978
Unspecified vulnerability in E-Xoopport before 2.2.0 has unknown impact and attack vectors, as addressed by "Some security fix."...
E-xoopport E-xoopport 1.0E-xoopport E-xoopport 1.1E-xoopport E-xoopport 2.0
NA
CVE-2012-5524
The _ssl_verify_callback function in tls_nb.py in Gajim before 0.15.3 does not properly verify SSL certificates, which allows remote attackers to conduct man-in-the-middle (MITM) attacks and spoof servers via an arbitrary certificate from a trusted CA....
Gajim Gajim 0.12.1Gajim Gajim 0.12.2Gajim Gajim 0.12.3Gajim Gajim 0.12.4Gajim Gajim 0.15Gajim Gajim 0.2Gajim Gajim 0.2.1Gajim Gajim 0.3Gajim Gajim 0.10Gajim Gajim 0.10.1Gajim Gajim 0.11Gajim Gajim 0.11.1Gajim Gajim 0.13.1Gajim Gajim 0.13.2Gajim Gajim 0.13.3Gajim Gajim 0.13.4Gajim Gajim 0.14Gajim Gajim 0.6Gajim Gajim 0.6.1Gajim Gajim 0.7Gajim Gajim 0.7.1Gajim Gajim 0.15.1Gajim Gajim 0.11.3Gajim Gajim 0.12Gajim Gajim 0.12.5Gajim Gajim 0.14.1Gajim Gajim 0.14.3Gajim Gajim 0.4.1Gajim Gajim 0.5.1Gajim Gajim 0.8Gajim Gajim 0.8.2Gajim Gajim 0.9.1Gajim GajimGajim Gajim 0.1Gajim Gajim 0.11.2Gajim Gajim 0.11.4Gajim Gajim 0.13Gajim Gajim 0.14.2Gajim Gajim 0.14.4Gajim Gajim 0.4Gajim Gajim 0.5Gajim Gajim 0.8.1Gajim Gajim 0.9
5.5
CVSSv3
CVE-2022-29204
TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of `tf.raw_ops.UnsortedSegmentJoin` does not fully validate the input arguments. This results in a `CHECK`-failure which can be used to trigger a...
Google Tensorflow 2.7.0Google TensorflowGoogle Tensorflow 2.8.0Google Tensorflow 2.9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-42916CVE-2023-49383bypassCVE-2023-26360CVE-2022-47531SQLbuffer overflowCVE-2023-45838CVE-2023-44295
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook