Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
beyond security vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2020-15526
In Redgate SQL Monitor 7.1.4 up to and including 10.1.6 (inclusive), the scope for disabling some TLS security certificate checks can extend beyond that defined by various options on the Configuration > Notifications pages to disable certificate checking for alert notification...
Red-gate Sql Monitor
7.2
CVSSv3
CVE-2019-10192
A heap-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x prior to 3.2.13, 4.x prior to 4.0.14 and 5.x prior to 5.0.4. By carefully corrupting a hyperloglog using the SETRANGE command, an attacker could trick Redis interpretation of dense...
Redislabs Redis
Redhat Openstack 9
Redhat Openstack 10
Redhat Openstack 13
Redhat Openstack 14
Redhat Software Collections 1.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Eus 8.1
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Eus 8.4
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux Server Aus 8.4
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Tus 8.4
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.1
7.2
CVSSv3
CVE-2023-40035
Craft is a CMS for creating custom digital experiences on the web and beyond. Bypassing the validatePath function can lead to potential remote code execution. This vulnerability can lead to malicious control of vulnerable systems and data exfiltrations. Although the vulnerability...
Craftcms Craft Cms 4.0.0
Craftcms Craft Cms
8.6
CVSSv3
CVE-2021-28706
guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precisio...
Xen Xen
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 11.0
7.5
CVSSv3
CVE-2006-20001
A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and previous versions.
Apache Http Server
9.8
CVSSv3
CVE-2022-28331
On Windows, Apache Portable Runtime 1.7.0 and previous versions may write beyond the end of a stack based buffer in apr_socket_sendv(). This is a result of integer overflow.
Apache Portable Runtime
NA
CVE-2002-1363
Portable Network Graphics (PNG) library libpng 1.2.5 and previous versions does not correctly calculate offsets, which allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers.
Greg Roelofs Libpng 1.0.13
Greg Roelofs Libpng 1.0.14
Greg Roelofs Libpng 1.2.1
Greg Roelofs Libpng 1.2.2
Greg Roelofs Libpng 1.2.3
Greg Roelofs Libpng 1.0.7
Greg Roelofs Libpng 1.0.8
Greg Roelofs Libpng 1.0.5
Greg Roelofs Libpng 1.0.6
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.0.11
Greg Roelofs Libpng 1.0.12
Greg Roelofs Libpng 1.0.9
Greg Roelofs Libpng 1.2.0
4.3
CVSSv3
CVE-2023-20237
A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent malicious user to access internal HTTP services that are otherwise inaccessible. This vulnerability is due to insufficient restrictions on internally accessible http proxies. An attacke...
Cisco Intersight Virtual Appliance
8.1
CVSSv3
CVE-2021-40501
SAP ABAP Platform Kernel - versions 7.77, 7.81, 7.85, 7.86, does not perform necessary authorization checks for an authenticated business user, resulting in escalation of privileges. That means this business user is able to read and modify data beyond the vulnerable system. Howev...
Sap Abap Platform Kernel 7.77
Sap Abap Platform Kernel 7.81
Sap Abap Platform Kernel 7.85
Sap Abap Platform Kernel 7.86
8.8
CVSSv3
CVE-2022-23684
A vulnerability in the web-based management interface of AOS-CX could allow a remote authenticated user with read-only privileges to escalate their permissions to those of an administrative user. Successful exploitation of this vulnerability allows an malicious user to escalate p...
Arubanetworks Aos-cx
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »