Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atop vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2011-3618
atop: symlink attack possible due to insecure tempfile handling
Atop Project Atop -
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
7.2
CVSSv3
CVE-2020-24552
Atop Technology industrial 3G/4G gateway contains Command Injection vulnerability. Due to insufficient input validation, the device's web management interface allows malicious users to inject specific code and execute system commands without privilege.
Atoptechnology Se5901 Firmware
Atoptechnology Se5901b Firmware
Atoptechnology Se5904d Firmware
Atoptechnology Se5908 Firmware
Atoptechnology Se5908a Firmware
Atoptechnology Se5916 Firmware
Atoptechnology Se5916a Firmware
6.5
CVSSv3
CVE-2023-46128
Nautobot is a Network Automation Platform built as a web application atop the Django Python framework with a PostgreSQL or MySQL database. In Nautobot 2.0.x, certain REST API endpoints, in combination with the `?depth=<N>` query parameter, can expose hashed user passwords a...
Networktocode Nautobot
NA
CVE-2024-32979
Nautobot is a Network Source of Truth and Network Automation Platform built as a web application atop the Django Python framework with a PostgreSQL or MySQL database. It exists that due to improper handling and escaping of user-provided query parameters, a maliciously crafted Nau...
4.3
CVSSv3
CVE-2023-51649
Nautobot is a Network Source of Truth and Network Automation Platform built as a web application atop the Django Python framework with a PostgreSQL or MySQL database. When submitting a Job to run via a Job Button, only the model-level `extras.run_job` permission is checked (i.e.,...
Networktocode Nautobot
5.3
CVSSv3
CVE-2023-50263
Nautobot is a Network Source of Truth and Network Automation Platform built as a web application atop the Django Python framework with a PostgreSQL or MySQL database. In Nautobot 1.x and 2.0.x before 1.6.7 and 2.0.6, the URLs `/files/get/?name=...` and `/files/download/?name=...`...
Networktocode Nautobot
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started