Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bootstrap vulnerabilities and exploits
(subscribe to this query)
8.6
CVSSv3
CVE-2018-0136
A vulnerability in the IPv6 subsystem of Cisco IOS XR Software Release 5.3.4 for the Cisco Aggregation Services Router (ASR) 9000 Series could allow an unauthenticated, remote malicious user to trigger a reload of one or more Trident-based line cards, resulting in a denial of ser...
Cisco Ios Xr 5.3.4
8.1
CVSSv3
CVE-2021-20198
A flaw was found in the OpenShift Installer before version v0.9.0-master.0.20210125200451-95101da940b0. During installation of OpenShift Container Platform 4 clusters, bootstrap nodes are provisioned with anonymous authentication enabled on kubelet port 10250. A remote attacker a...
Redhat Openshift Installer
8.1
CVSSv3
CVE-2017-18641
In LXC 2.0, many template scripts download code over cleartext HTTP, and omit a digital-signature check, before running it to bootstrap containers.
Linuxcontainers Lxc 2.0.0
8
CVSSv3
CVE-2018-0175
Format String vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition or execute arbitrary code...
Cisco Ios 15.4\\(3\\)m4.1
Cisco Ios Xe 15.4\\(3\\)m4.1
Cisco Ios Xr 15.4\\(3\\)m4.1
Cisco Ios Xe 15.4\\(3\\)m4.1
Cisco Ios Xr 15.4\\(3\\)m4.1
7.8
CVSSv3
CVE-2019-13314
virt-bootstrap 1.1.0 allows local users to discover a root password by listing a process, because this password may be present in the --root-password option to virt_bootstrap.py.
Redhat Virt-bootstrap 1.1.0
7.8
CVSSv3
CVE-2018-4237
An issue exists in certain Apple products. iOS prior to 11.4 is affected. macOS prior to 10.13.5 is affected. tvOS prior to 11.4 is affected. watchOS prior to 4.3.1 is affected. The issue involves the "libxpc" component. It allows malicious users to gain privileges via ...
Apple Iphone Os
Apple Mac Os X
Apple Watchos
Apple Tvos
1 Github repository
7.8
CVSSv3
CVE-2017-9450
The Amazon Web Services (AWS) CloudFormation bootstrap tools package (aka aws-cfn-bootstrap) prior to 1.4-19.10 allows local users to execute arbitrary code with root privileges by leveraging the ability to create files in an unspecified directory.
Amazon Amazon Web Services Cloudformation Bootstrap
7.5
CVSSv3
CVE-2023-31442
In Lightbend Akka prior to 2.8.1, the async-dns resolver (used by Discovery in DNS mode and transitively by Cluster Bootstrap) uses predictable DNS transaction IDs when resolving DNS records, making DNS resolution subject to poisoning by an attacker. If the application performing...
Lightbend Akka Discovery
Lightbend Akka Actor
7.5
CVSSv3
CVE-2022-33294
Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message.
Qualcomm Mdm8207 Firmware -
Qualcomm Mdm9205 Firmware -
Qualcomm Mdm9206 Firmware -
Qualcomm Mdm9207 Firmware -
Qualcomm Qca4004 Firmware -
Qualcomm Qts110 Firmware -
Qualcomm Snapdragon Wear 1100 Firmware -
Qualcomm Snapdragon Wear 1200 Firmware -
Qualcomm Snapdragon Wear 1300 Firmware -
Qualcomm Snapdragon X5 Lte Modem Firmware -
Qualcomm Wcd9306 Firmware -
Qualcomm Wcd9330 Firmware -
7.5
CVSSv3
CVE-2022-26650
In Apache ShenYui, ShenYu-Bootstrap, RegexPredicateJudge.java uses Pattern.matches(conditionData.getParamValue(), realData) to make judgments, where both parameters are controllable by the user. This can cause an attacker pass in malicious regular expressions and characters causi...
Apache Shenyu 2.4.0
Apache Shenyu 2.4.1
Apache Shenyu 2.4.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »