Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
amx vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5427
PHP remote file inclusion vulnerability in plugins/main.php in Php AMX 0.9.0, when register_globals is enabled or magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary PHP code via a URL in the plug_path parameter.
Php Amx Php Amx 0.9.0
1 EDB exploit
9.8
CVSSv3
CVE-2016-1984
The setUpSubtleUserAccount function in /bin/bw on Harman AMX devices prior to 2016-01-20 has a hardcoded password for the 1MB@tMaN account, which makes it easier for remote malicious users to obtain access via a (1) SSH or (2) HTTP session, a different vulnerability than CVE-2015...
Harman Amx Firmware 1.3.100
Harman Amx Firmware 1.2.322
9.8
CVSSv3
CVE-2015-8362
The setUpSubtleUserAccount function in /bin/bw on Harman AMX devices prior to 2015-10-12 has a hardcoded password for the BlackWidow account, which makes it easier for remote malicious users to obtain access via a (1) SSH or (2) HTTP session, a different vulnerability than CVE-20...
Harman Amx Firmware 1.2.322
Harman Amx Firmware 1.3.100
NA
CVE-2003-1381
Format string vulnerability in AMX 0.9.2 and previous versions, a plugin for Valve Software's Half-Life Server, allows remote malicious users to execute arbitrary commands via format string specifiers in the amx_say command.
Amxmod.net Amx Mod 0.9.2
1 EDB exploit
NA
CVE-2007-3536
Multiple buffer overflows in the AMX NetLinx VNC (AmxVnc) ActiveX control in AmxVnc.dll 1.0.13.0 allow remote malicious users to execute arbitrary code via long (1) Host, (2) Password, or (3) LogFile property values.
Amx Netlinx Vnc Activex Control 1.0.13.0
1 EDB exploit
NA
CVE-2007-5713
Off-by-one error in the GeoIP module in the AMX Mod X 1.76d plugin for Half-Life Server might allow malicious users to execute arbitrary code or cause a denial of service via unspecified input related to geolocation, which triggers an error message from the (1) geoip_code2 or (2)...
Amxmodx Amx Mod X 1.76d
Valve Software Half-life Dedicated Server
5.4
CVSSv3
CVE-2019-18991
A partial authentication bypass vulnerability exists on Atheros AR9132 3.60(AMX.8), AR9283 1.85, and AR9285 1.0.0.12NA devices. The vulnerability allows sending an unencrypted data frame to a WPA2-protected WLAN router where the packet is routed through the network. If successful...
Qualcomm Atheros Ar9132 Firmware 3.60\\(amx.8\\)
Qualcomm Atheros Ar9283 Firmware 1.85
Qualcomm Atheros Ar9285 Firmware 1.0.0.12na
NA
CVE-2023-32259
Insufficient Granularity of Access Control vulnerability in OpenText™ Service Management Automation X (SMAX), OpenText™ Asset Management X (AMX) allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Service Management Automation X ...
8.8
CVSSv3
CVE-2019-11224
HARMAN AMX MVP5150 v2.87.13 devices allow remote OS Command Injection.
Harman Amx Mvp5150 Firmware 2.87.13
1 Github repository
NA
CVE-2023-32260
Misinterpretation of Input vulnerability in OpenText™ Service Management Automation X (SMAX), OpenText™ Asset Management X (AMX), and OpenText™ Hybrid Cloud Management X (HCMX) products. The vulnerability could allow Input data manipulation.This issue affects Se...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »