Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arx vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-2949
SQL injection vulnerability in the web service in F5 ARX Data Manager 3.0.0 up to and including 3.1.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
F5 Arx Data Manager 3.0.0
F5 Arx Data Manager 3.1.0
9.1
CVSSv3
CVE-2011-3188
The (1) IPv4 and (2) IPv6 implementations in the Linux kernel prior to 3.1 use a modified MD4 algorithm to generate sequence numbers and Fragment Identification values, which makes it easier for remote malicious users to cause a denial of service (disrupted networking) or hijack ...
Linux Linux Kernel
Redhat Enterprise Linux 4.0
F5 Enterprise Manager 3.0.0
F5 Firepass 7.0.0
F5 Big-ip Local Traffic Manager
F5 Big-ip Access Policy Manager
F5 Big-ip Edge Gateway
F5 Big-ip Global Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Webaccelerator
F5 Big-ip Wan Optimization Manager
F5 Big-ip Protocol Security Module
F5 Big-ip Application Security Manager
F5 Firepass
F5 Arx
F5 Enterprise Manager
F5 Big-ip Analytics
5.9
CVSSv3
CVE-2013-3587
The HTTPS protocol, as used in unspecified web applications, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which makes it easier for man-in-the-middle malicious users to obtain plaintext secret values by observing length differences ...
F5 Big-ip Access Policy Manager 13.0.0
F5 Big-ip Access Policy Manager
F5 Big-ip Advanced Firewall Manager 13.0.0
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Analytics 13.0.0
F5 Big-ip Analytics
F5 Big-ip Application Acceleration Manager 13.0.0
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Security Manager 13.0.0
F5 Big-ip Application Security Manager
F5 Big-ip Edge Gateway
F5 Big-ip Link Controller 13.0.0
F5 Big-ip Link Controller
F5 Big-ip Local Traffic Manager 13.0.0
F5 Big-ip Local Traffic Manager
F5 Big-ip Policy Enforcement Manager 13.0.0
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Protocol Security Module
F5 Big-ip Wan Optimization Manager
F5 Big-ip Webaccelerator
F5 Firepass 7.0.0
F5 Firepass
1 Github repository
6.5
CVSSv3
CVE-2017-7693
Directory traversal vulnerability in viewer_script.jsp in Riverbed OPNET App Response Xpert (ARX) version 9.6.1 allows remote authenticated users to inject arbitrary commands to read OS files.
Riverbed Opnet App Response Xpert 9.6.1
NA
CVE-2014-2927
The rsync daemon in F5 BIG-IP 11.6 prior to 11.6.0, 11.5.1 before HF3, 11.5.0 before HF4, 11.4.1 before HF4, 11.4.0 before HF7, 11.3.0 before HF9, and 11.2.1 before HF11 and Enterprise Manager 3.x prior to 3.1.1 HF2, when configured in failover mode, does not require authenticati...
F5 Big-ip Access Policy Manager 11.2.0
F5 Big-ip Access Policy Manager 11.1.0
F5 Big-ip Access Policy Manager 11.0.0
F5 Big-ip Access Policy Manager 10.2.4
F5 Big-ip Analytics 11.5.0
F5 Big-ip Analytics 11.4.1
F5 Big-ip Analytics 11.4.0
F5 Big-ip Analytics 11.3.0
F5 Big-ip Application Security Manager 11.4.1
F5 Big-ip Application Security Manager 11.4.0
F5 Big-ip Application Security Manager 11.3.0
F5 Big-ip Application Security Manager 11.2.1
F5 Big-ip Application Security Manager 11.2.0
F5 Big-ip Edge Gateway 11.2.0
F5 Big-ip Edge Gateway 11.1.0
F5 Big-ip Edge Gateway 11.0.0
F5 Big-ip Edge Gateway 10.2.4
F5 Big-ip Global Traffic Manager 11.1.0
F5 Big-ip Global Traffic Manager 11.0.0
F5 Big-ip Global Traffic Manager 10.2.4
F5 Big-ip Global Traffic Manager 10.2.3
F5 Big-ip Link Controller 11.2.1
1 EDB exploit
9.8
CVSSv3
CVE-2020-25052
An issue exists on Samsung mobile devices with Q(10.0) (exynos9830 chipsets) software. H-Arx allows malicious users to execute arbitrary code or cause a denial of service (memory corruption) because indexes are mishandled. The Samsung ID is SVE-2020-17426 (August 2020).
Google Android 10.0
NA
CVE-2006-2019
Apple Mac OS X Safari 2.0.3, 1.3.1, and possibly other versions allows remote malicious users to cause a denial of service (CPU consumption and crash) via a TD element with a large number in the rowspan attribute.
Apple Safari 1.3.1
Apple Safari 2.0.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27975
CVE-2024-2961
CVE-2024-20380
XML injection
HTML injection
CVE-2024-29204
CVE-2023-51795
memory leak
CVE-2024-3470
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started