Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
number 7 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-4284
A type confusion issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.
Apple Tvos
Apple Watchos
Apple Safari
Apple Iphone Os
Apple Icloud
Apple Itunes
5.9
CVSSv3
CVE-2018-4266
A race condition was addressed with additional validation. This issue affected versions prior toiVersions prior to: OS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.
Apple Watchos
Apple Iphone Os
Apple Tvos
Apple Safari
Apple Itunes
Apple Icloud
6.5
CVSSv3
CVE-2018-4270
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.
Apple Iphone Os
Apple Tvos
Apple Watchos
Apple Safari
Apple Itunes
Apple Icloud
4.3
CVSSv3
CVE-2018-4278
In Safari prior to 11.1.2, iTunes prior to 12.8 for Windows, iOS prior to 11.4.1, tvOS prior to 11.4.1, iCloud for Windows prior to 7.6, sound fetched through audio elements may be exfiltrated cross-origin. This issue was addressed with improved audio taint tracking.
Apple Iphone Os
Apple Safari
Apple Tvos
Apple Icloud
Apple Itunes
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
NA
CVE-2003-0131
The SSL and TLS components for OpenSSL 0.9.6i and previous versions, 0.9.7, and 0.9.7a allow remote malicious users to perform an unauthorized RSA private key operation via a modified Bleichenbacher attack that uses a large number of SSL or TLS connections using PKCS #1 v1.5 padd...
Openssl Openssl 0.9.6
Openssl Openssl 0.9.6h
Openssl Openssl 0.9.6i
Openssl Openssl 0.9.6a
Openssl Openssl 0.9.6b
Openssl Openssl 0.9.7
Openssl Openssl 0.9.7a
Openssl Openssl 0.9.6e
Openssl Openssl 0.9.6g
Openssl Openssl 0.9.6c
Openssl Openssl 0.9.6d
3.1
CVSSv3
CVE-2021-2341
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerabi...
Oracle Openjdk 8
Oracle Openjdk 11.0.11
Oracle Graalvm 20.3.2
Oracle Graalvm 21.1.0
Oracle Openjdk 16.0.1
Oracle Openjdk 7
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
2 Github repositories
5.3
CVSSv3
CVE-2022-21349
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 7u321, 8u311; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allows u...
Oracle Graalvm 21.3.0
Oracle Jre 1.7.0
Oracle Graalvm 20.3.4
Oracle Jre 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.8.0
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Cloud Insights -
Netapp E-series Santricity Storage Manager -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Santricity Unified Manager -
Netapp E-series Santricity Web Services -
Netapp 7-mode Transition Tool -
Netapp E-series Santricity Os Controller
Debian Debian Linux 9.0
Oracle Openjdk 8
Oracle Openjdk 7
6.8
CVSSv3
CVE-2016-0128
The SAM and LSAD protocol implementations in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 do not properly establish an RPC channel, which allows man-in-th...
Microsoft Windows 7
Microsoft Windows 8.1
Microsoft Windows 10 1511
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2012 R2
Microsoft Windows 10 -
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
7.1
CVSSv3
CVE-2021-3752
A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The highest threat from thi...
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux For Real Time 7
Redhat Enterprise Linux For Real Time For Nfv 7
Redhat Virtualization Host 4.0
Redhat Enterprise Linux 8.0
Redhat 3scale 2.0
Fedoraproject Fedora 34
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Oracle Communications Cloud Native Core Binding Support Function 22.1.3
Oracle Communications Cloud Native Core Policy 22.2.0
Oracle Communications Cloud Native Core Network Exposure Function 22.1.1
9.8
CVSSv3
CVE-2020-8986
lib/NSSDropbox.php in ZendTo before 5.22-2 Beta failed to properly check for equality when validating the session cookie, allowing an malicious user to gain administrative access with a large number of requests.
Zend Zendto 3.10
Zend Zendto 3.11
Zend Zendto 3.12
Zend Zendto 3.13
Zend Zendto 3.20
Zend Zendto 3.51
Zend Zendto 3.52
Zend Zendto 3.53
Zend Zendto 3.54
Zend Zendto 3.55
Zend Zendto 3.56-2
Zend Zendto 3.57
Zend Zendto 3.58
Zend Zendto 3.59
Zend Zendto 3.60
Zend Zendto 3.61
Zend Zendto 3.62
Zend Zendto 3.63
Zend Zendto 3.64
Zend Zendto 3.65
Zend Zendto 3.70-2
Zend Zendto 3.71
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »