Vulmon
Recent Vulnerabilities
Trends
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
Recent vulnerabilities and exploits
2.1
CVSSv2
CVE-2020-11742
An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of bad continuation handling in GNTTABOP_copy. Grant table operations are expected to return 0 for success, and a negative number for errors. The fix for CVE-2017-12135...
Fedoraproject
Fedora
Xen
2.1
CVSSv2
CVE-2020-11740
An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (without active profiling) to obtain sensitive information about other guests. Unprivileged guests can request to map xenoprof buffers, even if profiling has not been enabled for those guests....
Xen
6.9
CVSSv2
CVE-2020-11741
An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (with active profiling) to obtain sensitive information about other guests, cause a denial of service, or possibly gain privileges. For guests for which "active" profiling was enabled by...
Fedoraproject
Fedora
Xen
5
CVSSv2
CVE-2010-3192
Certain run-time memory protection mechanisms in the GNU C Library (aka glibc or libc6) print argv[0] and backtrace information, which might allow context-dependent attackers to obtain sensitive information from process memory by executing an incorrect program, as demonstrated...
Gnu
Glibc
2 Github repositories available
7.2
CVSSv2
CVE-2015-3887
Untrusted search path vulnerability in ProxyChains-NG before 4.9 allows local users to gain privileges via a Trojan horse libproxychains4.so library in the current working directory, which is referenced in the LD_PRELOAD path....
Proxychains-ng Project
Proxychains-ng
10 Github repositories available
6.8
CVSSv2
CVE-2018-4233
An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue...
Apple
Icloud
Itunes
Safari
Iphone Os
Tvos
Watchos
Canonical
Ubuntu Linux
2 Metasploit modules available
27 Github repositories available
1 Article available
6.8
CVSSv2
CVE-2018-4441
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9....
Apple
Icloud
Itunes
Safari
Iphone Os
Tvos
Watchos
2 EDB exploits available
8 Github repositories available
7.5
CVSSv2
CVE-2018-1297
When using Distributed Test only (RMI based), Apache JMeter 2.x and 3.x uses an unsecured RMI connection. This could allow an attacker to get Access to JMeterEngine and send unauthorized code....
Apache
Jmeter
5 Github repositories available
10
CVSSv2
CVE-2014-6271
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd,...
Gnu
Bash
4 EDB exploits available
7 Metasploit modules available
28 Github repositories available
2 Articles available
6.8
CVSSv2
CVE-2020-12387
A race condition when running shutdown code for Web Worker led to a use-after-free vulnerability. This resulted in a potentially exploitable crash. This vulnerability affects Firefox ESR < 68.8, Firefox < 76, and Thunderbird < 68.8.0....
Mozilla
Firefox
Firefox Esr
Thunderbird
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-15093
mods-for-hesk
CVE-2020-15092
CVE-2020-15000
insecure direct object reference
encryption
CVE-2020-8193
kingcomposer
CVE-2020-8195
mods for hesk
king-theme
XXE
CVE-2020-12414
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »
Vulmon