Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aurora vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2010-0249
Use-after-free vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 on Windows 2000 SP4; Windows XP SP2 and SP3; Windows Server 2003 SP2; Windows Vista Gold, SP1, and SP2; Windows Server 2008 Gold, SP2, and R2; and Windows 7 allows remote malicious users to execute arb...
Microsoft Internet Explorer 5.0.1
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7.0
Microsoft Internet Explorer 8
2 EDB exploits
2 Github repositories
6 Articles
10
CVSSv3
CVE-2021-41873
Penguin Aurora TV Box 41502 is a high-end network HD set-top box produced by Tencent Video and Skyworth Digital. An unauthorized access vulnerability exists in the Penguin Aurora Box. An attacker can use the vulnerability to gain unauthorized access to a specific link to remotely...
Skyworth Penguin Aurora Box Firmware -
NA
CVE-2024-31760
An issue in sanluan flipped-aurora gin-vue-admin 2.4.x allows an malicious user to escalate privileges via the Session Expiration component.
7.5
CVSSv3
CVE-2021-41872
Skyworth Digital Technology Penguin Aurora Box 41502 has a denial of service vulnerability, which can be exploited by malicious users to cause a denial of service.
Skyworthdigital Penguin Aurora Box 41502 Firmware -
7.5
CVSSv3
CVE-2018-10666
The Owned smart contract implementation for Aurora IDEX Membership (IDXM), an Ethereum ERC20 token, allows malicious users to acquire contract ownership because the setOwner function is declared as public. A new owner can subsequently modify variables.
Auroradao Idex Membership -
7.5
CVSSv3
CVE-2018-10705
The Owned smart contract implementation for Aurora DAO (AURA), an Ethereum ERC20 token, allows malicious users to acquire contract ownership because the setOwner function is declared as public. An attacker can then conduct a lockBalances() denial of service attack.
Auroradao Aura -
7.4
CVSSv3
CVE-2015-7397
Multiple open redirect vulnerabilities in the Aurora starter store in IBM WebSphere Commerce 7.0 through Feature Pack 8 allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the referrer parameter.
Ibm Websphere Commerce 7.0
NA
CVE-2013-2599
A certain Qualcomm Innovation Center (QuIC) patch to the NativeDaemonConnector class in services/java/com/android/server/NativeDaemonConnector.java in Code Aurora Forum (CAF) releases of Android 4.1.x up to and including 4.3.x enables debug logging, which allows malicious users t...
Codeaurora Android-msm 3.10
Codeaurora Android-msm 3.10.28
Codeaurora Android-msm 3.10.30
Codeaurora Android-msm 3.10.38
Codeaurora Android-msm 3.10.40
Codeaurora Android-msm 3.10.45
Codeaurora Android-msm 3.10.47
Codeaurora Android-msm 3.10.49
Codeaurora Android-msm 3.12.10
Codeaurora Android-msm 3.12.12
Codeaurora Android-msm 3.12.19
Codeaurora Android-msm 3.12.21
Codeaurora Android-msm 3.12.26
Codeaurora Android-msm 3.12.4
Codeaurora Android-msm 3.12.6
Codeaurora Android-msm 3.13
Codeaurora Android-msm 3.13.10
Codeaurora Android-msm 3.13.2
Codeaurora Android-msm 3.13.7
Codeaurora Android-msm 3.13.9
Codeaurora Android-msm 3.14
Codeaurora Android-msm 3.10.32
NA
CVE-2013-6124
The Qualcomm Innovation Center (QuIC) init scripts in Code Aurora Forum (CAF) releases of Android 4.1.x up to and including 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed by a (1) chown or (2) chmod command, as demonstrated by changing the...
Codeaurora Android-msm 3.10
Codeaurora Android-msm 3.10.22
Codeaurora Android-msm 3.10.37
Codeaurora Android-msm 3.10.38
Codeaurora Android-msm 3.10.39
Codeaurora Android-msm 3.10.40
Codeaurora Android-msm 3.12.10
Codeaurora Android-msm 3.12.11
Codeaurora Android-msm 3.12.12
Codeaurora Android-msm 3.12.13
Codeaurora Android-msm 3.12.26
Codeaurora Android-msm 3.12.3
Codeaurora Android-msm 3.12.4
Codeaurora Android-msm 3.12.5
Codeaurora Android-msm 3.12.6
Codeaurora Android-msm 3.13.1
Codeaurora Android-msm 3.13.10
Codeaurora Android-msm 3.13.11
Codeaurora Android-msm 3.13.2
Codeaurora Android-msm 3.14
Codeaurora Android-msm 3.14.1
Codeaurora Android-msm 3.14.8
NA
CVE-2024-27905
** UNSUPPORTED WHEN ASSIGNED ** Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Aurora. An endpoint exposing internals to unauthenticated users can be used as a "padding oracle" allowing an anonymous malicious user to construct a valid...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »