Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
krahmer vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1236
Stack-based buffer overflow in the chkNum function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote malicious users to have unspecified impact via vectors related to a "badly formed number" and a "long digit list."
Graphviz Graphviz 2.34.0
NA
CVE-2013-2161
XML injection vulnerability in account/utils.py in OpenStack Swift Folsom, Grizzly, and Havana allows malicious users to trigger invalid or spoofed Swift responses via an account name.
Opensuse Opensuse 12.3
Openstack Grizzly -
Openstack Folsom -
Openstack Havana -
NA
CVE-2013-0292
The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib prior to 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal.
Freedesktop Dbus-glib
Freedesktop Dbus-glib 0.98
Freedesktop Dbus-glib 0.84
Freedesktop Dbus-glib 0.82
Freedesktop Dbus-glib 0.92
Freedesktop Dbus-glib 0.90
Freedesktop Dbus-glib 0.76
Freedesktop Dbus-glib 0.74
Freedesktop Dbus-glib 0.88
Freedesktop Dbus-glib 0.86
Freedesktop Dbus-glib 0.73
Freedesktop Dbus-glib 0.72
Freedesktop Dbus-glib 0.96
Freedesktop Dbus-glib 0.94
Freedesktop Dbus-glib 0.80
Freedesktop Dbus-glib 0.78
1 EDB exploit
9.8
CVSSv3
CVE-2012-4406
OpenStack Object Storage (swift) prior to 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote malicious users to execute arbitrary code via a crafted pickle object.
Openstack Swift
Fedoraproject Fedora 16
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Server 6.0
Redhat Storage 2.0
Redhat Storage For Public Cloud 2.0
Redhat Gluster Storage Server For On-premise 2.0
Redhat Gluster Storage Management Console 2.0
NA
CVE-2012-4425
libgio, when used in setuid or other privileged programs in spice-gtk and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: it could be argued that this is a vulnerability in the a...
Freedesktop Spice-gtk -
Gtk Libgio -
1 EDB exploit
NA
CVE-2012-3524
libdbus 1.5.x and previous versions, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: libdbus maintainers state that ...
Freedesktop Libdbus 1.5.2
Freedesktop Libdbus 1.5.6
Freedesktop Libdbus 1.5.8
Freedesktop Libdbus 1.5.0
Freedesktop Libdbus 1.5.10
Freedesktop Libdbus
Freedesktop Libdbus 1.5.4
1 EDB exploit
NA
CVE-2011-2490
opielogin.c in opielogin in OPIE 2.4.1-test1 and previous versions does not check the return value of the setuid system call, which allows local users to gain privileges by arranging for an account to already be running its maximum number of processes.
Nrl Opie 2.11
Nrl Opie 2.3
Nrl Opie 2.22
Nrl Opie 2.32
Nrl Opie 2.4
Nrl Opie 2.10
Nrl Opie 2.21
Nrl Opie 2.2
Nrl Opie
NA
CVE-2011-2489
Multiple off-by-one errors in opiesu.c in opiesu in OPIE 2.4.1-test1 and previous versions might allow local users to gain privileges via a crafted command line.
Nrl Opie 2.3
Nrl Opie 2.22
Nrl Opie 2.21
Nrl Opie 2.2
Nrl Opie
Nrl Opie 2.11
Nrl Opie 2.10
Nrl Opie 2.32
Nrl Opie 2.4
NA
CVE-2011-0997
dhclient in ISC DHCP 3.0.x up to and including 4.2.x prior to 4.2.1-P1, 3.1-ESV prior to 3.1-ESV-R1, and 4.1-ESV prior to 4.1-ESV-R2 allows remote malicious users to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message, as demonstrated by...
Isc Dhcp 3.0
Isc Dhcp 3.0.1
Isc Dhcp 3.0.2
Isc Dhcp 3.0.3
Isc Dhcp 3.0.4
Isc Dhcp 3.0.5
Isc Dhcp 3.0.6
Isc Dhcp 3.1-esv
Isc Dhcp 3.1.0
Isc Dhcp 3.1.1
Isc Dhcp 3.1.2
Isc Dhcp 3.1.3
Isc Dhcp 4.1-esv
Isc Dhcp 4.2.0
Isc Dhcp 4.2.1
Debian Debian Linux 5.0
Debian Debian Linux 6.0
Debian Debian Linux 7.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
NA
CVE-2011-0465
xrdb.c in xrdb prior to 1.0.9 in X.Org X11R7.6 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in a hostname obtained from a (1) DHCP or (2) XDMCP message.
X X11
X X11 R7.5
Matthias Hopf Xrdb 1.0.6
Matthias Hopf Xrdb 1.0.5
Matthias Hopf Xrdb 1.0.4
X X11 R6.8.0
X X11 R6.7.0
X X11 R6
X X11 R5
Matthias Hopf Xrdb
Matthias Hopf Xrdb 1.0.7
X X11 R6.8.2
X X11 R6.8.1
X X11 R6.3
X X11 R6.1
X X11 R7.2
X X11 R7.1
X X11 R7.0
X X11 R6.9.0
X X11 R6.5.1
X X11 R6.4
X X11 R2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »