Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
beyond security vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2003-0209
Integer overflow in the TCP stream reassembly module (stream4) for Snort 2.0 and previous versions allows remote malicious users to execute arbitrary code via large sequence numbers in packets, which enable a heap-based buffer overflow.
Sourcefire Snort 1.8.5
Sourcefire Snort 1.8.6
Smoothwall Smoothwall 2.0 Beta 4
Sourcefire Snort 1.8
Sourcefire Snort 1.8.7
Sourcefire Snort 1.9
Sourcefire Snort 1.8.1
Sourcefire Snort 1.8.2
Sourcefire Snort 1.9.1
Sourcefire Snort 1.8.3
Sourcefire Snort 1.8.4
1 EDB exploit
941
VMScore
CVE-2010-2568
Windows Shell in Microsoft Windows XP SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 SP2 and R2, and Windows 7 allows local users or remote malicious users to execute arbitrary code via a crafted (1) .LNK or (2) .PIF shortcut file, which is not properly handled during icon ...
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Windows Xp -
Microsoft Windows 7 -
Microsoft Windows Vista -
Microsoft Windows Xp
Microsoft Windows Vista
Microsoft Windows Server 2003
Microsoft Windows 2003 Server
2 EDB exploits
3 Github repositories
23 Articles
890
VMScore
CVE-2004-1012
The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and previous versions allows remote authenticated users to execute arbitrary code via a certain command ("body[p") that is treated as a different command ("body.peek") and causes an index in...
Carnegie Mellon University Cyrus Imap Server 2.1.7
Carnegie Mellon University Cyrus Imap Server 2.1.9
Carnegie Mellon University Cyrus Imap Server 2.2.7
Carnegie Mellon University Cyrus Imap Server 2.2.8
Carnegie Mellon University Cyrus Imap Server 2.1.10
Carnegie Mellon University Cyrus Imap Server 2.1.16
Carnegie Mellon University Cyrus Imap Server 2.2.4
Carnegie Mellon University Cyrus Imap Server 2.2.5
Carnegie Mellon University Cyrus Imap Server 2.2.6
Carnegie Mellon University Cyrus Imap Server 2.2.2 Beta
Carnegie Mellon University Cyrus Imap Server 2.2.3
Conectiva Linux 9.0
Carnegie Mellon University Cyrus Imap Server 2.2.0 Alpha
Carnegie Mellon University Cyrus Imap Server 2.2.1 Beta
Openpkg Openpkg Current
Conectiva Linux 10.0
Trustix Secure Linux 2.0
Trustix Secure Linux 2.1
Redhat Fedora Core Core 2.0
Redhat Fedora Core Core 3.0
Ubuntu Ubuntu Linux 4.1
Trustix Secure Linux 2.2
890
VMScore
CVE-2004-1013
The argument parser of the FETCH command in Cyrus IMAP Server 2.2.x up to and including 2.2.8 allows remote authenticated users to execute arbitrary code via certain commands such as (1) "body[p", (2) "binary[p", or (3) "binary[p") that cause an inde...
Carnegie Mellon University Cyrus Imap Server 2.1.7
Carnegie Mellon University Cyrus Imap Server 2.1.9
Carnegie Mellon University Cyrus Imap Server 2.2.7
Carnegie Mellon University Cyrus Imap Server 2.2.8
Carnegie Mellon University Cyrus Imap Server 2.1.10
Carnegie Mellon University Cyrus Imap Server 2.1.16
Carnegie Mellon University Cyrus Imap Server 2.2.5
Carnegie Mellon University Cyrus Imap Server 2.2.6
Carnegie Mellon University Cyrus Imap Server 2.2.2 Beta
Carnegie Mellon University Cyrus Imap Server 2.2.3
Carnegie Mellon University Cyrus Imap Server 2.2.4
Conectiva Linux 9.0
Carnegie Mellon University Cyrus Imap Server 2.2.0 Alpha
Carnegie Mellon University Cyrus Imap Server 2.2.1 Beta
Openpkg Openpkg Current
Conectiva Linux 10.0
Trustix Secure Linux 2.0
Trustix Secure Linux 2.1
Redhat Fedora Core Core 2.0
Redhat Fedora Core Core 3.0
Ubuntu Ubuntu Linux 4.1
Trustix Secure Linux 2.2
890
VMScore
CVE-2003-0033
Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x prior to 1.9.1 allows remote malicious users to execute arbitrary code via fragmented RPC packets.
Snort Snort 1.8.0
Snort Snort 1.8.7
Snort Snort 1.9.0
Snort Snort 1.8.5
Snort Snort 1.8.6
Snort Snort 1.8.1
Snort Snort 1.8.2
Snort Snort 1.8.3
Snort Snort 1.8.4
829
VMScore
CVE-2018-20836
An issue exists in the Linux kernel prior to 4.20. There is a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free.
Linux Linux Kernel
Canonical Ubuntu Linux 16.04
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
F5 Traffix Signaling Delivery Controller 5.1.0
F5 Traffix Signaling Delivery Controller 5.0.0
Netapp Virtual Storage Console
Netapp Active Iq Unified Manager
Netapp Vasa Provider For Clustered Data Ontap
Netapp Solidfire \\& Hci Management Node -
Netapp Snapprotect -
Netapp Hci Compute Node -
Netapp Solidfire \\& Hci Storage Node -
Netapp Storage Replication Adapter For Clustered Data Ontap -
Opensuse Leap 15.0
Opensuse Leap 15.1
802
VMScore
CVE-2021-44142
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions before 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow ou...
Samba Samba
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 21.10
Synology Diskstation Manager
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux For Scientific Computing 7.0
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Resilient Storage 7.0
Redhat Enterprise Linux For Power Little Endian 7.0
Redhat Enterprise Linux For Power Big Endian 7.0
Redhat Enterprise Linux For Ibm Z Systems 7.0
Redhat Virtualization Host 4.0
Redhat Enterprise Linux 8.0
3 Github repositories
1 Article
801
VMScore
CVE-2021-32762
Redis is an open source, in-memory database that persists on disk. The redis-cli command line tool and redis-sentinel service may be vulnerable to integer overflow when parsing specially crafted large multi-bulk network replies. This is a result of a vulnerability in the underlyi...
Redis Redis
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Netapp Management Services For Element Software -
Netapp Management Services For Netapp Hci -
Oracle Communications Operations Monitor 4.3
Oracle Communications Operations Monitor 4.4
Oracle Communications Operations Monitor 5.0
801
VMScore
CVE-2020-3374
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote malicious user to bypass authorization, enabling them to access sensitive information, modify the system configuration, or impact the availability of the af...
Cisco Sd-wan
801
VMScore
CVE-2016-1302
Cisco Application Policy Infrastructure Controller (APIC) devices with software prior to 1.0(3h) and 1.1 prior to 1.1(1j) and Nexus 9000 ACI Mode switches with software prior to 11.0(3h) and 11.1 prior to 11.1(1j) allow remote authenticated users to bypass intended RBAC restricti...
Cisco Application Policy Infrastructure Controller 1.0\\\\\\(1k\\\\\\)
Cisco Application Policy Infrastructure Controller 1.0\\\\\\(1h\\\\\\)
Cisco Application Policy Infrastructure Controller 1.0\\\\\\(3f\\\\\\)
Cisco Application Policy Infrastructure Controller 1.0\\\\\\(2m\\\\\\)
Cisco Application Policy Infrastructure Controller 1.0\\\\\\(2j\\\\\\)
Cisco Application Policy Infrastructure Controller 1.0\\\\\\(1n\\\\\\)
Cisco Application Policy Infrastructure Controller 1.0\\\\\\(1e\\\\\\)
Cisco Application Policy Infrastructure Controller 1.1\\\\\\(0.920a\\\\\\)
Cisco Nx-os 11.0\\\\\\(3f\\\\\\)
Cisco Nx-os 11.0\\\\\\(2m\\\\\\)
Cisco Nx-os 11.0\\\\\\(1d\\\\\\)
Cisco Nx-os 11.0\\\\\\(1c\\\\\\)
Cisco Nx-os Base
Cisco Nx-os 11.0\\\\\\(1b\\\\\\)
Cisco Nx-os 11.0\\\\\\(2j\\\\\\)
Cisco Nx-os 11.0\\\\\\(1e\\\\\\)
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »