Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bd vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-47376
The Alaris Infusion Central software, versions 1.1 to 1.3.2, may contain a recoverable password after the installation. No patient health data is stored in the database, although some site installations may choose to store personal data.
Bd Alaris Infusion Central
NA
CVE-2023-30563
A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session.
Bd Alaris Systems Manager
NA
CVE-2023-47685
Cross-Site Request Forgery (CSRF) vulnerability in Lukman Nakib Preloader Matrix.This issue affects Preloader Matrix: from n/a up to and including 2.0.1.
Nkb-bd Preloader Matrix
NA
CVE-2023-30562
A GRE dataset file within Systems Manager can be tampered with and distributed to PCUs.
Bd Alaris Guardrails Editor
9
CVSSv2
CVE-2022-29897
On various RAD-ISM-900-EN-* devices by PHOENIX CONTACT an admin user could use the traceroute utility integrated in the WebUI to execute arbitrary code with root privileges on the OS due to an improper input validation in all versions of the firmware.
Phoenixcontact Rad-ism-900-en-bd Firmware
Phoenixcontact Rad-ism-900-en-bd\\/b Firmware
Phoenixcontact Rad-ism-900-en-bd-bus Firmware
9
CVSSv2
CVE-2022-29898
On various RAD-ISM-900-EN-* devices by PHOENIX CONTACT an admin user could use the configuration file uploader in the WebUI to execute arbitrary code with root privileges on the OS due to an improper validation of an integrity check value in all versions of the firmware.
Phoenixcontact Rad-ism-900-en-bd Firmware
Phoenixcontact Rad-ism-900-en-bd\\/b Firmware
Phoenixcontact Rad-ism-900-en-bd-bus Firmware
4.6
CVSSv2
CVE-2017-12351
A vulnerability in the guest shell feature of Cisco NX-OS System Software could allow an authenticated, local malicious user to read and send packets outside the scope of the guest shell container. An attacker would need valid administrator credentials to perform this attack. The...
Cisco Nx-os 8.1\\(0\\)bd\\(0.20\\)
Cisco Nx-os 7.0\\(3\\)i7\\(1\\)
4.9
CVSSv2
CVE-2017-12332
A vulnerability in Cisco NX-OS System Software patch installation could allow an authenticated, local malicious user to write a file to arbitrary locations. The vulnerability is due to insufficient restrictions in the patch installation process. An attacker could exploit this vul...
Cisco Unified Computing System 7.0\\(0\\)hsk\\(0.357\\)
Cisco Nx-os 8.1\\(1\\)
Cisco Nx-os 8.1\\(0\\)bd\\(0.20\\)
7.2
CVSSv2
CVE-2018-0337
A vulnerability in the role-based access-checking mechanisms of Cisco NX-OS Software could allow an authenticated, local malicious user to execute arbitrary commands on an affected device. The vulnerability exists because the affected software lacks proper input and validation ch...
Cisco Nx-os 7.0\\(8\\)n1\\(1\\)
Cisco Nx-os 7.1\\(4\\)n1\\(1\\)
Cisco Nx-os 7.3\\(1\\)n1\\(0.6\\)
Cisco Nx-os 7.3\\(2\\)n1\\(0.350\\)
Cisco Nx-os 8.1\\(0.9\\)
Cisco Nx-os 7.3\\(1\\)dx\\(0.119\\)
Cisco Nx-os 8.1\\(0\\)bd\\(0.20\\)
Cisco Nx-os 8.3\\(0\\)spg\\(0.30\\)
Cisco Nx-os 7.3\\(3\\)d1\\(0.2\\)
Cisco Nx-os 8.0\\(0.54\\)s0
Cisco Nx-os 8.2\\(0.4\\)s0
Cisco Nx-os 8.8\\(3.5\\)s0
4.6
CVSSv2
CVE-2017-12330
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local malicious user to perform a command injection attack. The vulnerability is due to insufficient input validation of command arguments to the CLI parser. An attacker could exploit this vul...
Cisco Nx-os 8.1\\(0\\)bd\\(0.20\\)
Cisco Nx-os 7.0\\(0\\)hsk\\(0.357\\)
Cisco Nx-os 8.1\\(1\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »