Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ace vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2021-38397
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to unrestricted file uploads, which may allow an malicious user to remotely execute arbitrary code and cause a denial-of-service condition.
Honeywell C200 Firmware -
Honeywell C200e Firmware -
Honeywell C300 Firmware -
Honeywell Application Control Environment Firmware -
9.9
CVSSv3
CVE-2016-9832
PricewaterhouseCoopers (PwC) ACE-ABAP 8.10.304 for SAP Security allows remote authenticated users to conduct ABAP injection attacks and execute arbitrary code via (1) SAPGUI or (2) Internet Communication Framework (ICF) over HTTP or HTTPS, as demonstrated by WEBGUI or Report.
Pwc Ace-advanced Business Application Programming 8.10.304
9.8
CVSSv3
CVE-2021-38395
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to improper neutralization of special elements in output, which may allow an malicious user to remotely execute arbitrary code and cause a denial-of-service condition.
Honeywell C200 Firmware -
Honeywell C200e Firmware -
Honeywell C300 Firmware -
Honeywell Application Control Environment Firmware -
9.8
CVSSv3
CVE-2022-30270
The Motorola ACE1000 RTU through 2022-05-02 has default credentials. It exposes an SSH interface on port 22/TCP. This interface is used for remote maintenance and for SFTP file-transfer operations that are part of engineering software functionality. Access to this interface is co...
Motorola Ace1000 Firmware -
9.8
CVSSv3
CVE-2021-40146
A Remote Code Execution (RCE) vulnerability exists in the Any23 YAMLExtractor.java file and is known to affect Any23 versions < 2.5. RCE vulnerabilities allow a malicious actor to execute any code of their choice on a remote machine over LAN, WAN, or internet. RCE belongs to t...
Apache Any23
1 Github repository
9.8
CVSSv3
CVE-2014-6311
generate_doygen.pl in ace prior to 6.2.7+dfsg-2 creates predictable file names in the /tmp directory which allows malicious users to gain elevated privileges.
Vanderbilt Adaptive Communication Environment
Vanderbilt Adaptive Communication Environment 6.2.7
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
9.8
CVSSv3
CVE-2018-14790
Fuji Electric FRENIC LOADER v3.3 v7.3.4.1a of FRENIC-Mini (C1), FRENIC-Mini (C2), FRENIC-Eco, FRENIC-Multi, FRENIC-MEGA, FRENIC-Ace. A buffer over-read vulnerability may allow remote code execution on the device.
Fujielectric Frenic Loader 3.3 Firmware 7.3.4.1a
9.8
CVSSv3
CVE-2018-14802
Fuji Electric FRENIC LOADER v3.3 v7.3.4.1a of FRENIC-Mini (C1), FRENIC-Mini (C2), FRENIC-Eco, FRENIC-Multi, FRENIC-MEGA, FRENIC-Ace. The program does not properly check user-supplied comments which may allow for arbitrary remote code execution.
Fujielectric Frenic Loader 3.3 Firmware 7.3.4.1a
9.8
CVSSv3
CVE-2018-0308
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to execute arbitrary code or cause a denial of service (DoS) condition. The vulnerability exists because the affected softw...
Cisco Nexus 7000 Firmware 7.3\\(2\\)d1\\(0.49\\)
Cisco Nexus 7000 Firmware 8.1\\(0.112\\)s0
Cisco Nexus 7000 Firmware 8.0\\(1\\)
Cisco Nexus 5000 Firmware 8.1\\(0.2\\)s0
Cisco Nexus 5000 Firmware 7.3\\(0\\)d1\\(0.98\\)
Cisco Nexus 5000 Firmware 7.0\\(0\\)hsk\\(0.357\\)
Cisco Firepower 9000 Firmware R231
Cisco Firepower 9000 Firmware R211
Cisco Nexus 9000 Firmware 8.1\\(0\\)bd\\(0.20\\)
Cisco Nexus 9000 Firmware 8.1\\(1\\)s4
Cisco Unified Computing System Firmware 3.1\\(3a\\)a
Cisco Unified Computing System Firmware 7.0\\(0\\)hsk\\(0.357\\)
9.8
CVSSv3
CVE-2018-0304
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to read sensitive memory content, create a denial of service (DoS) condition, or execute arbitrary code as root. The vulner...
Cisco Nexus 7000 Firmware 7.3\\(2\\)d1\\(0.49\\)
Cisco Nexus 7000 Firmware 8.1\\(0.112\\)s0
Cisco Nexus 7000 Firmware 8.0\\(1\\)
Cisco Nexus 5000 Firmware 7.3\\(0\\)d1\\(0.98\\)
Cisco Nexus 5000 Firmware 8.1\\(0.2\\)s0
Cisco Nexus 5000 Firmware 7.0\\(0\\)hsk\\(0.357\\)
Cisco Firepower 9000 Firmware R231
Cisco Firepower 9000 Firmware R211
Cisco Nexus 9000 Firmware 8.1\\(0\\)bd\\(0.20\\)
Cisco Nexus 9000 Firmware 8.1\\(1\\)s4
Cisco Unified Computing System Firmware 3.1\\(3a\\)a
Cisco Unified Computing System Firmware 7.0\\(0\\)hsk\\(0.357\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »