Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alfredo ortega vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2018-11101
Open Whisper Signal (aka Signal-Desktop) up to and including 1.10.1 allows XSS via a resource location specified in an attribute of a SCRIPT, IFRAME, or IMG element, leading to JavaScript execution after a reply, a different vulnerability than CVE-2018-10994. The attacker needs t...
Signal Signal-desktop
1 Article
6.1
CVSSv3
CVE-2018-10994
js/views/message_view.js in Open Whisper Signal (aka Signal-Desktop) prior to 1.10.1 allows XSS via a URL.
Signal Signal-desktop
1 Article
NA
CVE-2008-4539
Heap-based buffer overflow in the Cirrus VGA implementation in (1) KVM before kvm-82 and (2) QEMU on Debian GNU/Linux and Ubuntu might allow local users to gain privileges by using the VNC console for a connection, aka the LGD-54XX "bitblt" heap overflow. NOTE: this iss...
Kvm Qumranet Kvm
Qemu Qemu
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
Debian Debian Linux 5.0
Debian Debian Linux 4.0
NA
CVE-2008-2382
The protocol_client_msg function in vnc.c in the VNC server in (1) Qemu 0.9.1 and previous versions and (2) KVM kvm-79 and previous versions allows remote malicious users to cause a denial of service (infinite loop) via a certain message.
Qemu Qemu 0.8.0
Qemu Qemu 0.7.2
Qemu Qemu 0.5.3
Qemu Qemu 0.5.2
Qemu Qemu
Qemu Qemu 0.3.0
Qemu Qemu 0.2.0
Qemu Qemu 0.1.4
Qemu Qemu 0.7.1
Qemu Qemu 0.7.0
Qemu Qemu 0.5.1
Qemu Qemu 0.5.0
Qemu Qemu 0.1.1
Qemu Qemu 0.1.2
Qemu Qemu 0.8.2
Qemu Qemu 0.8.1
Qemu Qemu 0.5.5
Qemu Qemu 0.5.4
Qemu Qemu 0.4.1
Qemu Qemu 0.4.0
Qemu Qemu 0.1.6
Qemu Qemu 0.1.3
1 EDB exploit
NA
CVE-2008-5714
Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote malicious users to guess the VNC password, which is limited to seven characters where eight was intended.
Qemu Qemu 0.9.1
NA
CVE-2008-1945
QEMU 0.9.0 does not properly handle changes to removable media, which allows guest OS users to read arbitrary files on the host OS by using the diskformat: parameter in the -usbdevice option to modify the disk-image header to identify a different format, a related issue to CVE-20...
Qemu Qemu 0.9.0
Opensuse Opensuse 10.3
Opensuse Opensuse 11.0
Opensuse Opensuse 11.1
Suse Linux Enterprise Server 10
Suse Linux Enterprise Server 11
Debian Debian Linux 4.0
Debian Debian Linux 5.0
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Eus 5.2
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
NA
CVE-2008-2542
Stack-based buffer overflow in the getline function in Ppm/ppm.C in NASA Ames Research Center BigView 1.8 allows user-assisted remote malicious users to execute arbitrary code via a crafted PNM file.
Nasa Ames Research Center Bigview 1.8
1 EDB exploit
NA
CVE-2008-2004
The drive_init function in QEMU 0.9.1 determines the format of a raw disk image based on the header, which allows local guest users to read arbitrary files on the host by modifying the header to identify a different format, which is used when the guest is restarted.
Qemu Qemu 0.9.1
NA
CVE-2008-2080
Stack-based buffer overflow in the Read32s_64 function in src/lib/cdfread64.c in the NASA Goddard Space Flight Center Common Data Format (CDF) library prior to 3.2.1 allows context-dependent malicious users to execute arbitrary code via a .cdf file with crafted length tags.
Nasa Goddard Space Flight Center Common Data Format 2.2
Nasa Goddard Space Flight Center Common Data Format 2.3
Nasa Goddard Space Flight Center Common Data Format 2.0
Nasa Goddard Space Flight Center Common Data Format 2.1
Nasa Goddard Space Flight Center Common Data Format 3.0
Nasa Goddard Space Flight Center Common Data Format 3.1
Nasa Goddard Space Flight Center Common Data Format 2.4
Nasa Goddard Space Flight Center Common Data Format 2.5
Nasa Goddard Space Flight Center Common Data Format 2.6
Nasa Goddard Space Flight Center Common Data Format 2.7
Nasa Goddard Space Flight Center Common Data Format
NA
CVE-2008-0985
Heap-based buffer overflow in the GIF library in the WebKit framework for Google Android SDK m3-rc37a and previous versions allows remote malicious users to execute arbitrary code via a crafted GIF file whose logical screen height and width are different than the actual height an...
Google Android Sdk M3-rc37a
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »