Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
storm vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2015-3188
The UI daemon in Apache Storm 0.10.0 prior to 0.10.0-beta1 allows remote malicious users to execute arbitrary code via unspecified vectors.
Apache Storm 0.10.0
7.5
CVSSv3
CVE-2014-0115
Directory traversal vulnerability in the log viewer in Apache Storm 0.9.0.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter to log.
Apache Storm 0.9.0.1
NA
CVE-2009-2617
Stack-based buffer overflow in medialib.dll in BaoFeng Storm 3.9.62 allows remote malicious users to execute arbitrary code via a long pathname in the source attribute of an item element in a .smpl playlist file.
Baofeng Storm 3.9.62
1 EDB exploit
9.8
CVSSv3
CVE-2020-29580
The official storm Docker images prior to 1.2.1 contain a blank password for a root user. Systems using the Storm Docker container deployed by affected versions of the Docker image may allow an remote malicious user to achieve root access with a blank password.
Docker Storm Docker Image
8.8
CVSSv3
CVE-2021-36100
Specially crafted string in OTRS system configuration can allow the execution of any system command.
Otrs Otrs Itsm
Otrs Otrs Storm
Otrs Otrs
NA
CVE-2007-4939
Heap-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9.0 and previous versions, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allows remote malicious users to cause a denial of service (application ...
Mympc Cd-storm 1.0.0.1
Verycd Stormplayer 1.0.4
Guliverkli Media Player Classic
1 EDB exploit
NA
CVE-2007-4940
Multiple integer overflows in Media Player Classic (MPC) 6.4.9.0 and previous versions, as used standalone and in mympc (aka CD-Storm) 1.0.0.1, StormPlayer 1.0.4, and possibly other products, allow remote malicious users to cause a denial of service (application crash) or possibl...
Guliverkli Media Player Classic
Mympc Cd-storm 1.0.0.1
Verycd Stormplayer 1.0.4
7.8
CVSSv3
CVE-2021-40162
A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40163
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processing component.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
7.8
CVSSv3
CVE-2021-40164
A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
Autodesk Revit 2022
Autodesk Inventor
Autodesk Autocad
Autodesk Autocad Architecture
Autodesk Autocad Electrical
Autodesk Autocad Map 3d
Autodesk Autocad Mechanical
Autodesk Autocad Mep
Autodesk Autocad Plant 3d
Autodesk Autocad Lt
Autodesk Design Review 2018
Autodesk Dwg Trueview
Autodesk Navisworks
Autodesk Infraworks 2019.3
Autodesk Infraworks
Autodesk Infraworks 2020.2
Autodesk Infraworks 2021.2
Autodesk Infraworks 2022.0
Autodesk Infraworks 2022.1
Autodesk Revit
Autodesk Autocad Civil 3d
Autodesk Autocad Advance Steel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27842
CVE-2024-30657
CVE-2024-4534
hardcoded
SSRF
CVE-2024-21683
CVE-2024-5364
file upload
CVE-2024-5371
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »