Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ioactive vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6258
Multiple stack-based buffer overflows in the legacy mod_jk2 2.0.3-DEV and previous versions Apache module allow remote malicious users to execute arbitrary code via a long (1) Host header, or (2) Hostname within a Host header.
Apache Mod Jk 2.0
Apache Mod Jk 2.0.1
Apache Mod Jk 2.0.2
Apache Mod Jk 2.0.3 Dev
F5 Big-ip 9.2.3.30
1 EDB exploit
NA
CVE-2014-2942
Cobham Aviator 700D and 700E satellite terminals use an improper algorithm for PIN codes, which makes it easier for malicious users to obtain a privileged terminal session by calculating the superuser code, and then leveraging physical access or terminal access to enter this code...
Cobham Aviator 700e -
Cobham Aviator 700d -
NA
CVE-2014-2964
Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the (1) debug, (2) prod, (3) do160, and (4) flrp programs, which allows physically proximate malicious users to gain privileges by sending a password over a serial line.
Cobham Aviator 700d -
Cobham Aviator 700e -
NA
CVE-2013-1996
X.org libFS 1.0.4 and previous versions allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to an unexpected sign extension in the FSOpenServer function.
X Libfs 1.0.3
X Libfs 1.0.1
X Libfs
X Libfs 1.0.2
NA
CVE-2014-3341
The SNMP module in Cisco NX-OS 7.0(3)N1(1) and previous versions on Nexus 5000 and 6000 devices provides different error messages for invalid requests depending on whether the VLAN ID exists, which allows remote malicious users to enumerate VLANs via a series of requests, aka Bug...
Cisco Nx-os 5.2\\(1\\)n1\\(4\\)
Cisco Nx-os 5.2\\(1\\)n1\\(3\\)
Cisco Nx-os 5.2\\(1\\)n1\\(2a\\)
Cisco Nx-os 5.1\\(3\\)n2\\(1a\\)
Cisco Nx-os 5.1\\(3\\)n2\\(1\\)
Cisco Nx-os 5.0\\(2\\)n2\\(1a\\)
Cisco Nx-os 5.0\\(2\\)n2\\(1\\)
Cisco Nx-os 6.0\\(2\\)n2\\(1\\)
Cisco Nx-os 5.2\\(1\\)n1\\(8a\\)
Cisco Nx-os 5.2\\(1\\)n1\\(2\\)
Cisco Nx-os 5.2\\(1\\)n1\\(1b\\)
Cisco Nx-os 5.1\\(3\\)n1\\(1a\\)
Cisco Nx-os 5.1\\(3\\)n1\\(1\\)
Cisco Nx-os 5.0\\(3\\)n1\\(1c\\)
Cisco Nx-os 5.0\\(2\\)n1\\(1\\)
Cisco Nx-os 6.0\\(2\\)n1\\(2\\)
Cisco Nx-os
Cisco Nx-os 5.2\\(1\\)n1\\(6\\)
Cisco Nx-os 5.2\\(1\\)n1\\(5\\)
Cisco Nx-os 5.1\\(3\\)n2\\(1c\\)
Cisco Nx-os 5.1\\(3\\)n2\\(1b\\)
Cisco Nx-os 5.0\\(3\\)n2\\(2\\)
2 Github repositories
NA
CVE-2013-0137
The default configuration of the Digital Alert Systems DASDEC EAS device prior to 2.0-2 and the Monroe Electronics R189 One-Net EAS device prior to 2.0-2 contains a known SSH private key, which makes it easier for remote malicious users to obtain root access, and spoof alerts, vi...
Digital Alert Systems Dasdec Eas
Monroe Electronics R189 One-net Eas 2.0-0
Monroe Electronics R189 One-net Eas
Digital Alert Systems Dasdec Eas 2.0-0
9.8
CVSSv3
CVE-2017-3221
Blind SQL injection in Inmarsat AmosConnect 8 login form allows remote malicious users to access user credentials, including user names and passwords.
Inmarsat Amosconnect 8 8.2.1
Inmarsat Amosconnect 8 8.2.2
Inmarsat Amosconnect 8 8.0.2
Inmarsat Amosconnect 8 8.2.0
Inmarsat Amosconnect 8 8.0
Inmarsat Amosconnect 8 8.3.0
Inmarsat Amosconnect 8 8.3.1
Inmarsat Amosconnect 8 8.0.1
Inmarsat Amosconnect 8 8.4.0
Inmarsat Amosconnect 8 8.4.0.1
9.8
CVSSv3
CVE-2017-3222
Hard-coded credentials in AmosConnect 8 allow remote malicious users to gain full administrative privileges, including the ability to execute commands on the Microsoft Windows host platform with SYSTEM privileges by abusing AmosConnect Task Manager.
Inmarsat Amosconnect 8.0
Inmarsat Amosconnect 8.0.1
Inmarsat Amosconnect 8.0.2
Inmarsat Amosconnect 8.2.0
Inmarsat Amosconnect 8.2.1
Inmarsat Amosconnect 8.2.2
Inmarsat Amosconnect 8.3.0
Inmarsat Amosconnect 8.3.1
Inmarsat Amosconnect 8.4.0
Inmarsat Amosconnect 8.4.0.1
NA
CVE-2014-8092
Multiple integer overflows in X.Org X Window System (aka X11 or X) X11R1 and X.Org Server (aka xserver and xorg-server) prior to 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) ProcPu...
X.org X11 1.0
X.org Xorg-server
NA
CVE-2014-8094
Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 up to and including 1.16.x prior to 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a...
X.org Xorg-server 1.14.2
X.org Xorg-server 1.10.1
X.org Xorg-server 1.8.99.905
X.org Xorg-server 1.13.1.901
X.org Xorg-server 1.7.5.902
X.org Xorg-server 1.7.4.901
X.org Xorg-server 1.11.0
X.org Xorg-server 1.7.2
X.org Xorg-server 1.8.2.901
X.org Xorg-server 1.12.1.902
X.org Xorg-server 1.13.3
X.org Xorg-server 1.10.6
X.org Xorg-server 1.14.1.902
X.org Xorg-server 1.11.3
X.org Xorg-server 1.14.4.901
X.org Xorg-server 1.10.4
X.org Xorg-server 1.9.99.903
X.org Xorg-server 1.16.0
X.org Xorg-server 1.14.4
X.org Xorg-server 1.10.99.901
X.org Xorg-server 1.14.5.901
X.org Xorg-server 1.12.3.901
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »