Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ash vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-1020016
ASH-AIO prior to 2.0.0.3 allows an open redirect.
Ash-aio Project Ash-aio 2.0.0.2
Ash-aio Project Ash-aio 2.0.0.0
Ash-aio Project Ash-aio 2.0.0.1
9.8
CVSSv3
CVE-2021-45688
An issue exists in the ash crate prior to 0.33.1 for Rust. util::read_spv may read from uninitialized memory locations.
Ash Project Ash
5.5
CVSSv3
CVE-2021-42375
An incorrect handling of a special element in Busybox's ash applet leads to denial of service when processing a crafted shell command, due to the shell mistaking specific characters for reserved characters. This may be used for DoS under rare conditions of filtered command i...
Busybox Busybox 1.33.1
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Netapp Cloud Backup -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
NA
CVE-2003-1030
Buffer overflow in DameWare Mini Remote Control prior to 3.73 allows remote malicious users to execute arbitrary code via a long pre-authentication request to TCP port 6129.
Dameware Development Mini Remote Control Server 3.70 .0.0
Dameware Development Mini Remote Control Server 3.71 .0.0
Dameware Development Mini Remote Control Server 3.72 .0.0
4 EDB exploits
7.5
CVSSv3
CVE-2021-41773
A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usu...
Apache Http Server 2.4.49
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Netapp Cloud Backup -
2 Metasploit modules
154 Github repositories
3 Articles
9.8
CVSSv3
CVE-2021-42013
It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by t...
Apache Http Server 2.4.49
Apache Http Server 2.4.50
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Jd Edwards Enterpriseone Tools
Oracle Secure Backup
Netapp Cloud Backup -
2 Metasploit modules
72 Github repositories
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started