Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
access vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2022-20216
android exported is used to set third-party app access permissions, and the default value of intent-filter is true. com.sprd.firewall has set exported as true.Product: AndroidVersions: Android SoCAndroid ID: A-231911916
Google Android -
10
CVSSv2
CVE-2022-29560
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < 2.15.1), RUGGEDCOM ROX MX5000RE (All versions < 2.15.1), RUGGEDCOM ROX RX1400 (All versions < 2.15.1), RUGGEDCOM ROX RX1500 (All versions < 2.15.1), RUGGEDCOM ROX RX1501 (All versions < 2.1...
Siemens Ruggedcom Rox Rx1500 Firmware
Siemens Ruggedcom Rox Rx1501 Firmware
Siemens Ruggedcom Rox Rx1510 Firmware
Siemens Ruggedcom Rox Rx1511 Firmware
Siemens Ruggedcom Rox Rx1512 Firmware
Siemens Ruggedcom Rox Rx1524 Firmware
Siemens Ruggedcom Rox Rx1536 Firmware
Siemens Ruggedcom Rox Rx5000 Firmware
Siemens Ruggedcom Rox Rx1400 Firmware
Siemens Ruggedcom Rox Mx5000re Firmware
Siemens Ruggedcom Rox Mx5000 Firmware
10
CVSSv2
CVE-2022-2197
By using a specific credential string, an attacker with network access to the device’s web interface could circumvent the authentication scheme and perform administrative operations.
Exemys Rme1 Firmware
10
CVSSv2
CVE-2022-31230
Dell PowerScale OneFS, versions 8.2.x-9.2.x, contain broken or risky cryptographic algorithm. A remote unprivileged malicious attacker could potentially exploit this vulnerability, leading to full system access.
Dell Powerscale Onefs
10
CVSSv2
CVE-2022-1517
LRM utilizes elevated privileges. An unauthenticated malicious actor can upload and execute code remotely at the operating system level, which can allow an malicious user to change settings, configurations, software, or access sensitive data on the affected produc. An attacker co...
Illumina Local Run Manager
10
CVSSv2
CVE-2022-32535
The Bosch Ethernet switch PRA-ES8P2S with software version 1.01.05 runs its web server with root privilege. In combination with CVE-2022-23534 this could give an attacker root access to the switch.
Bosch Pra-es8p2s Firmware
10
CVSSv2
CVE-2022-24562
In IOBit IOTransfer 4.3.1.1561, an unauthenticated attacker can send GET and POST requests to Airserv and gain arbitrary read/write access to the entire file-system (with admin privileges) on the victim's endpoint, which can result in data theft and remote code execution.
Iobit Iotransfer 4.3.1.1561
10
CVSSv2
CVE-2022-30309
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-off" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper acces...
Festo Controller Cecc-x-m1 Firmware
Festo Controller Cecc-x-m1 Firmware 4.0.14
Festo Controller Cecc-x-m1-mv Firmware
Festo Controller Cecc-x-m1-mv Firmware 4.0.14
Festo Controller Cecc-x-m1-mv-s1 Firmware
Festo Controller Cecc-x-m1-mv-s1 Firmware 4.0.14
Festo Controller Cecc-x-m1-ys-l1 Firmware
Festo Controller Cecc-x-m1-ys-l2 Firmware
Festo Controller Cecc-x-m1-y-yjkp Firmware
Festo Servo Press Kit Yjkp Firmware
Festo Servo Press Kit Yjkp- Firmware
10
CVSSv2
CVE-2022-30308
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-on" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access...
Festo Controller Cecc-x-m1 Firmware
Festo Controller Cecc-x-m1 Firmware 4.0.14
Festo Controller Cecc-x-m1-mv Firmware
Festo Controller Cecc-x-m1-mv Firmware 4.0.14
Festo Controller Cecc-x-m1-mv-s1 Firmware
Festo Controller Cecc-x-m1-mv-s1 Firmware 4.0.14
Festo Controller Cecc-x-m1-ys-l1 Firmware
Festo Controller Cecc-x-m1-ys-l2 Firmware
Festo Controller Cecc-x-m1-y-yjkp Firmware
Festo Servo Press Kit Yjkp Firmware
Festo Servo Press Kit Yjkp- Firmware
10
CVSSv2
CVE-2022-30310
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-acknerr-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access contr...
Festo Controller Cecc-x-m1 Firmware
Festo Controller Cecc-x-m1 Firmware 4.0.14
Festo Controller Cecc-x-m1-mv Firmware
Festo Controller Cecc-x-m1-mv Firmware 4.0.14
Festo Controller Cecc-x-m1-mv-s1 Firmware
Festo Controller Cecc-x-m1-mv-s1 Firmware 4.0.14
Festo Controller Cecc-x-m1-ys-l1 Firmware
Festo Controller Cecc-x-m1-ys-l2 Firmware
Festo Controller Cecc-x-m1-y-yjkp Firmware
Festo Servo Press Kit Yjkp Firmware
Festo Servo Press Kit Yjkp- Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »