Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ace vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2007-0968
Unspecified vulnerability in Cisco Firewall Services Module (FWSM) prior to 2.3(4.7) and 3.x prior to 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections.
Cisco Firewall Services Module 2.3
Cisco Firewall Services Module 3.1
790
VMScore
CVE-2015-7871
Crypto-NAK packets in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to bypass authentication.
Ntp Ntp 4.2.5
Ntp Ntp
Ntp Ntp 4.2.8
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
760
VMScore
CVE-2012-1029
SQL injection vulnerability in mobile/search/index.php in Tube Ace (Adult PHP Tube Script) 1.6 allows remote malicious users to execute arbitrary SQL commands via the q parameter. NOTE: some of these details are obtained from third party information.
Tubeace Tube Ace 1.6
2 EDB exploits
756
VMScore
CVE-2010-1141
VMware Tools in VMware Workstation 6.5.x prior to 6.5.4 build 246459; VMware Player 2.5.x prior to 2.5.4 build 246459; VMware ACE 2.5.x prior to 2.5.4 build 246459; VMware Server 2.x prior to 2.0.2 build 203138; VMware Fusion 2.x prior to 2.0.6 build 246742; VMware ESXi 3.5 and 4...
Vmware Workstation 6.5.2
Vmware Workstation 6.5.3
Vmware Workstation 6.5.0
Vmware Workstation 6.5.1
Vmware Player 2.5.3
Vmware Player 2.5.1
Vmware Player 2.5.2
Vmware Player 2.5
Vmware Ace 2.5.2
Vmware Ace 2.5.0
Vmware Ace 2.5.1
Vmware Ace 2.5.3
Vmware Server 2.0.2
Vmware Server 2.0.1
Vmware Server 2.0.0
Vmware Fusion 3.0
Vmware Fusion 2.0.5
Vmware Fusion 2.0
Vmware Fusion 2.0.3
Vmware Fusion 2.0.4
Vmware Fusion 2.0.1
Vmware Fusion 2.0.2
756
VMScore
CVE-2010-1142
VMware Tools in VMware Workstation 6.5.x prior to 6.5.4 build 246459; VMware Player 2.5.x prior to 2.5.4 build 246459; VMware ACE 2.5.x prior to 2.5.4 build 246459; VMware Server 2.x prior to 2.0.2 build 203138; VMware Fusion 2.x prior to 2.0.6 build 246742; VMware ESXi 3.5 and 4...
Vmware Workstation 6.5.0
Vmware Workstation 6.5.3
Vmware Workstation 6.5.1
Vmware Workstation 6.5.2
Vmware Player 2.5
Vmware Player 2.5.3
Vmware Player 2.5.1
Vmware Player 2.5.2
Vmware Ace 2.5.3
Vmware Ace 2.5.0
Vmware Ace 2.5.1
Vmware Ace 2.5.2
Vmware Server 2.0.0
Vmware Server 2.0.2
Vmware Server 2.0.1
Vmware Fusion 2.0.5
Vmware Fusion 2.0
Vmware Fusion 3.0
Vmware Fusion 2.0.1
Vmware Fusion 2.0.2
Vmware Fusion 2.0.3
Vmware Fusion 2.0.4
755
VMScore
CVE-2006-5187
PHP remote file inclusion vulnerability in includes/functions.php in Bulletin Board Ace (BBaCE) 3.5 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Bulletin Board Ace Bulletin Board Ace 3.4
Bulletin Board Ace Bulletin Board Ace
1 EDB exploit
755
VMScore
CVE-2006-2909
Stack-based buffer overflow in the info tip shell extension (zipinfo.dll) in PicoZip 4.01 allows remote malicious users to execute arbitrary code via a long filename in an (1) ACE, (2) RAR, or (3) ZIP archive, which is triggered when the user moves the mouse over the archive.
Picozip Picozip 4.01
1 EDB exploit
755
VMScore
CVE-2005-2856
Stack-based buffer overflow in the WinACE UNACEV2.DLL third-party compression utility prior to 2.6.0.0, as used in multiple products including (1) ALZip 5.51 up to and including 6.11, (2) Servant Salamander 2.0 and 2.5 Beta 1, (3) WinHKI 1.66 and 1.67, (4) ExtractNow 3.x, (5) Tot...
Winace Winace 2.6.0.0
1 EDB exploit
750
VMScore
CVE-2017-17428
Cavium Nitrox SSL, Nitrox V SSL, and TurboSSL software development kits (SDKs) allow remote malicious users to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT attack.
Cavium Octeon Sdk
Cavium Nitrox V Ssl Sdk
Cavium Nitrox Ssl Sdk
Cavium Octeon Ssl Sdk
Cavium Turbossl Sdk
Cisco Webex Meetings T31
Cisco Webex Conect Im 7.24.1
Cisco Webex Meetings T32
Cisco Ace4710 Application Control Engine Firmware 3.0\\(0\\)a5\\(3.0\\)
Cisco Ace4710 Application Control Engine Firmware 3.0\\(0\\)a5\\(3.5\\)
Cisco Ace4710 Application Control Engine Firmware 3.0\\(0\\)a5\\(2.0\\)
Cisco Ace30 Application Control Engine Module Firmware 3.0\\(0\\)a5\\(3.0\\)
Cisco Ace30 Application Control Engine Module Firmware 3.0\\(0\\)a5\\(3.5\\)
Cisco Ace30 Application Control Engine Module Firmware 3.0\\(0\\)a5\\(2.0\\)
Cisco Adaptive Security Appliance 5520 Firmware 9.1\\(7.16\\)
Cisco Adaptive Security Appliance 5540 Firmware 9.1\\(7.16\\)
Cisco Adaptive Security Appliance 5550 Firmware 9.1\\(7.16\\)
Cisco Adaptive Security Appliance 5510 Firmware 9.1\\(7.16\\)
Cisco Adaptive Security Appliance 5505 Firmware 9.1\\(7.16\\)
696
VMScore
CVE-2018-20250
In WinRAR versions prior to and including 5.61, There is path traversal vulnerability when crafting the filename field of the ACE format (in UNACEV2.dll). When the filename field is manipulated with specific patterns, the destination (extraction) folder is ignored, thus treating ...
Rarlab Winrar
2 EDB exploits
21 Github repositories
5 Articles
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »