Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apt vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-32261
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The affected application contains a misconfiguration in the APT update. This could allow an malicious user to add insecure packages to the application.
Siemens Sinema Remote Connect Server
NA
CVE-2012-0158
The (1) ListView, (2) ListView2, (3) TreeView, and (4) TreeView2 ActiveX controls in MSCOMCTL.OCX in the Common Controls in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2003 Web Components SP3; SQL Server 2000 SP4, 2005 SP4, and 2008 SP2, SP3, and R2...
Microsoft Office 2010
Microsoft Office 2003
Microsoft Office Web Components 2003
Microsoft Office 2007
Microsoft Sql Server 2000
Microsoft Sql Server 2008
Microsoft Sql Server 2005
Microsoft Biztalk Server 2002
Microsoft Commerce Server 2002
Microsoft Commerce Server 2007
Microsoft Commerce Server 2009
Microsoft Visual Foxpro 8.0
Microsoft Visual Foxpro 9.0
Microsoft Visual Basic 6.0
1 EDB exploit
8 Github repositories
44 Articles
8.1
CVSSv3
CVE-2024-21412
Internet Shortcut Files Security Feature Bypass Vulnerability
Microsoft Windows 11 22h2
Microsoft Windows 10 21h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows Server 2022 23h2
Microsoft Windows 11 23h2
Microsoft Windows 11 21h2
Microsoft Windows 10 1809
Microsoft Windows 10 22h2
3 Github repositories
5 Articles
NA
CVE-2012-0948
DistUpgrade/DistUpgradeMain.py in Update Manager, as used by Ubuntu 12.04 LTS, 11.10, and 11.04, uses weak permissions for (1) apt-clone_system_state.tar.gz and (2) system_state.tar.gz, which allows local users to obtain repository credentials.
Canonical Ubuntu Linux 11.04
Gnome Update-manager-core 0.156.14.3
Gnome Update-manager-core 0.152.25.10
Gnome Update-manager-core 0.150.5.2
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 11.10
NA
CVE-2012-5356
The apt-add-repository tool in Ubuntu Software Properties 0.75.x prior to 0.75.10.3, 0.80.x prior to 0.80.9.2, 0.81.x prior to 0.81.13.5, 0.82.x prior to 0.82.7.3, and 0.92.x prior to 0.92.8 does not properly check PPA GPG keys imported from a keyserver, which allows remote malic...
Canonical Ubuntu Software Properties 0.75.10.1
Canonical Ubuntu Software Properties 0.75.6
Canonical Ubuntu Software Properties 0.75.5
Canonical Ubuntu Software Properties 0.75.10
Canonical Ubuntu Software Properties 0.75.9
Canonical Ubuntu Software Properties 0.75.8
Canonical Ubuntu Software Properties 0.75.7
Canonical Ubuntu Software Properties 0.75.10.2
Canonical Ubuntu Software Properties 0.75.4
Canonical Ubuntu Software Properties 0.80.6
Canonical Ubuntu Software Properties 0.80.5
Canonical Ubuntu Software Properties 0.80.9.1
Canonical Ubuntu Software Properties 0.80.9
Canonical Ubuntu Software Properties 0.80.2
Canonical Ubuntu Software Properties 0.80
Canonical Ubuntu Software Properties 0.80.8
Canonical Ubuntu Software Properties 0.80.7
Canonical Ubuntu Software Properties 0.80.4
Canonical Ubuntu Software Properties 0.80.3
Canonical Ubuntu Software Properties 0.81.13.3
Canonical Ubuntu Software Properties 0.81.13.2
Canonical Ubuntu Software Properties 0.81.6
NA
CVE-2015-1330
unattended-upgrades prior to 0.86.1 does not properly authenticate packages when the (1) force-confold or (2) force-confnew dpkg options are enabled in the DPkg::Options::* apt configuration, which allows remote man-in-the-middle malicious users to upload and execute arbitrary pa...
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Debian Unattended-upgrades
7.5
CVSSv3
CVE-2019-1367
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1221.
Microsoft Internet Explorer 10
Microsoft Internet Explorer 11
Microsoft Internet Explorer 9
4 Github repositories
6 Articles
NA
CVE-2010-0834
The base-files package prior to 5.0.0ubuntu7.1 on Ubuntu 9.10 and prior to 5.0.0ubuntu20.10.04.2 on Ubuntu 10.04 LTS, as shipped on Dell Latitude 2110 netbooks, does not require authentication for package installation, which allows remote archive servers and man-in-the-middle mal...
Ubuntu Ubuntu Linux 10.04
Ubuntu Ubuntu Linux 9.10
8.1
CVSSv3
CVE-2019-11480
The pc-kernel snap build process hardcoded the --allow-insecure-repositories and --allow-unauthenticated apt options when creating the build chroot environment. This could allow an attacker who is able to perform a MITM attack between the build environment and the Ubuntu archive ...
Canonical C-kernel
9.8
CVSSv3
CVE-2016-4117
Adobe Flash Player 21.0.0.226 and previous versions allows remote malicious users to execute arbitrary code via unspecified vectors, as exploited in the wild in May 2016.
Adobe Flash Player
1 EDB exploit
2 Github repositories
11 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »