Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Recent vulnerabilities and exploits

7.8
CVSSv3
CVE-2020-0520
Path traversal in igdkmd64.sys for Intel(R) Graphics Drivers prior to 15.45.30.5103, 15.40.44.5107, 15.36.38.5117 and 15.33.49.5100 may allow an authenticated user to potentially enable escalation of privilege or denial of service via local access.
Intel Graphics Driver
4.4
CVSSv3
CVE-2020-0522
Improper initialization in the firmware for the Intel(R) Ethernet I210 Controller series of network adapters before version 3.30 may allow a privileged user to potentially enable denial of service via local access.
Intel Ethernet Controller I210 Firmware
6.7
CVSSv3
CVE-2020-0526
Improper input validation in firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege via local access. The list of affected products is provided in intel-sa-00343: https://www.intel.com/content/www/us/en/security-center/advisory/intel-s...
Intel Nuc Kit Nuc8i7bek Firmware Becfl357.86a.0077Intel Nuc 8 Enthusiast Pc Nuc8i7bekqa Firmware Becfl357.86a.0077Intel Nuc Kit Nuc8i7hnk Firmware Hnkbli70.86a.0059Intel Nuc 8 Business Pc Nuc8i7hnkqc Firmware Hnkbli70.86a.0059Intel Nuc 8 Mainstream-g Kit Nuc8i7inh Firmware Inwhl357.0036Intel Nuc 8 Mainstream-g Kit Nuc8i5inh Firmware Inwhl357.0036Intel Nuc 8 Mainstream-g Mini Pc Nuc8i7inh Firmware Inwhl357.0036Intel Nuc 8 Rugged Kit Nuc8cchkr Firmware Chaplcel.0047Intel Nuc Board Nuc8cchb Firmware Chaplcel.0047Intel Nuc 8 Home Pc Nuc8i3cysm Firmware Cycnli35.86a.0044Intel Nuc Kit Nuc7i7dnke Firmware Dnkbli7v.86a.0067Intel Nuc Kit Nuc7i7dnhe Firmware Dnkbli7v.86a.0067Intel Nuc Kit Nuc7i5dnke Firmware Dnkbli5v.86a.0067Intel Nuc Kit Nuc7i5dnhe Firmware Dnkbli5v.86a.0067Intel Nuc Kit Nuc7i3dnke Firmware Dnkbli30.86a.0067Intel Nuc Kit Nuc7i3dnhe Firmware Dnkbli30.86a.0067Intel Nuc Board Nuc7i7dnbe Firmware Dnkbli7v.86a.0067Intel Nuc Board Nuc7i5dnbe Firmware Dnkbli5v.86a.0067Intel Nuc Board Nuc7i3dnbe Firmware Dnkbli30.86a.0067Intel Compute Stick Stk2m3w64cc Firmware Ccsklm30.86a.0062Intel Compute Stick Stk2m364cc Firmware Ccsklm30.86a.0062Intel Compute Stick Stk1a32sc Firmware Sc0045
7.8
CVSSv3
CVE-2020-0528
Improper buffer restrictions in BIOS firmware for 7th, 8th, 9th and 10th Generation Intel(R) Core(TM) Processor families may allow an authenticated user to potentially enable escalation of privilege and/or denial of service via local access.
Intel Core I5-7600k Firmware -Intel Core I5-7600t Firmware -Intel Core I5-7600 Firmware -Intel Core I5-7500 Firmware -Intel Core I5-7500t Firmware -Intel Core I5-7442eq Firmware -Intel Core I5-7440hq Firmware -Intel Core I5-7440eq Firmware -Intel Core I5-7400t Firmware -Intel Core I5-7400 Firmware -Intel Core I5-7360u Firmware -Intel Core I5-7300u Firmware -Intel Core I5-7300hq Firmware -Intel Core I5-7287u Firmware -Intel Core I5-7267u Firmware -Intel Core I5-7260u Firmware -Intel Core I5-7200u Firmware -Intel Core I5-7y54 Firmware -Intel Core I5-7y57 Firmware -Intel Core I7-7920hq Firmware -Intel Core I7-7820hq Firmware -Intel Core I7-7820hk Firmware -
7.5
CVSSv3
CVE-2018-14884
An issue exists in PHP 7.0.x prior to 7.0.27, 7.1.x prior to 7.1.13, and 7.2.x prior to 7.2.1. Inappropriately parsing an HTTP response leads to a segmentation fault because http_header_value in ext/standard/http_fopen_wrapper.c can be a NULL value that is mishandled in an atoi c...
Php PhpNetapp Storage Automation Store -
9.8
CVSSv3
CVE-2018-14885
Incorrect access control in the database manager component in Odoo Community 10.0 and 11.0 and Odoo Enterprise 10.0 and 11.0 allows a remote malicious user to restore a database dump without knowing the super-admin password. An arbitrary password succeeds.
Odoo Odoo 10.0Odoo Odoo 11.0
4.9
CVSSv3
CVE-2018-14886
The module-description renderer in Odoo Community 11.0 and previous versions and Odoo Enterprise 11.0 and previous versions does not disable RST's local file inclusion, which allows privileged authenticated users to read local files via a crafted module description.
Odoo Odoo 9.0Odoo Odoo 10.0Odoo Odoo 11.0
6.5
CVSSv3
CVE-2018-14887
Improper Host header sanitization in the dbfilter routing component in Odoo Community 11.0 and previous versions and Odoo Enterprise 11.0 and previous versions allows a remote malicious user to deny access to the service and to disclose database names via a crafted request.
Odoo Odoo 10.0Odoo Odoo 9.0Odoo Odoo 11.0
6.1
CVSSv3
CVE-2018-14888
inc/plugins/thankyoulike.php in the Eldenroot Thank You/Like plugin prior to 3.1.0 for MyBB allows XSS via a post or thread subject.
Thank You\\/like Project Thank You\\/like
7.5
CVSSv3
CVE-2022-22195
An Improper Update of Reference Count vulnerability in the kernel of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based malicious user to trigger a counter overflow, eventually causing a Denial of Service (DoS). This issue affects Juniper Networks Junos OS...
Juniper Junos Os EvolvedJuniper Junos Os Evolved 20.4Juniper Junos Os Evolved 21.1Juniper Junos Os Evolved 21.2Juniper Junos Os Evolved 21.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook