Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
client side vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-9482
If NiFi Registry 0.1.0 to 0.5.0 uses an authentication mechanism other than PKI, when the user clicks Log Out, NiFi Registry invalidates the authentication token on the client side but not on the server side. This permits the user's client-side token to be used for up to 12 ...
Apache Nifi Registry
5.9
CVSSv3
CVE-2019-6111
An issue exists in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are...
Openbsd Openssh
Winscp Winscp
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Eus 8.1
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux Server Tus 8.4
Redhat Enterprise Linux Eus 8.4
Redhat Enterprise Linux Server Aus 8.4
Redhat Enterprise Linux Server Aus 8.6
Redhat Enterprise Linux Server Tus 8.6
Redhat Enterprise Linux Eus 8.6
Fedoraproject Fedora 30
Apache Mina Sshd 2.2.0
2 EDB exploits
3 Github repositories
1 Article
5.9
CVSSv3
CVE-2017-17428
Cavium Nitrox SSL, Nitrox V SSL, and TurboSSL software development kits (SDKs) allow remote malicious users to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT attack.
Cavium Octeon Sdk
Cavium Nitrox V Ssl Sdk
Cavium Nitrox Ssl Sdk
Cavium Octeon Ssl Sdk
Cavium Turbossl Sdk
Cisco Webex Meetings T31
Cisco Webex Conect Im 7.24.1
Cisco Webex Meetings T32
Cisco Ace4710 Application Control Engine Firmware 3.0\\(0\\)a5\\(3.0\\)
Cisco Ace4710 Application Control Engine Firmware 3.0\\(0\\)a5\\(3.5\\)
Cisco Ace4710 Application Control Engine Firmware 3.0\\(0\\)a5\\(2.0\\)
Cisco Ace30 Application Control Engine Module Firmware 3.0\\(0\\)a5\\(3.0\\)
Cisco Ace30 Application Control Engine Module Firmware 3.0\\(0\\)a5\\(3.5\\)
Cisco Ace30 Application Control Engine Module Firmware 3.0\\(0\\)a5\\(2.0\\)
Cisco Adaptive Security Appliance 5520 Firmware 9.1\\(7.16\\)
Cisco Adaptive Security Appliance 5540 Firmware 9.1\\(7.16\\)
Cisco Adaptive Security Appliance 5550 Firmware 9.1\\(7.16\\)
Cisco Adaptive Security Appliance 5510 Firmware 9.1\\(7.16\\)
Cisco Adaptive Security Appliance 5505 Firmware 9.1\\(7.16\\)
5.3
CVSSv3
CVE-2023-0581
The PrivateContent plugin for WordPress is vulnerable to protection mechanism bypass due to the use of client side validation in versions up to, and including, 8.4.3. This is due to the plugin checking if an IP had been blocklist via client-side scripts rather than server-side. T...
Lcweb Privatecontent
6.5
CVSSv3
CVE-2023-36535
Client-side enforcement of server-side security in Zoom clients prior to 5.14.10 may allow an authenticated user to enable information disclosure via network access.
Zoom Zoom
Zoom Virtual Desktop Infrastructure
Zoom Rooms
4.9
CVSSv3
CVE-2023-39218
Client-side enforcement of server-side security in Zoom clients prior to 5.14.10 may allow a privileged user to enable information disclosure via network access.
Zoom Zoom
Zoom Virtual Desktop Infrastructure
Zoom Rooms
NA
CVE-2009-2875
Buffer overflow in atas32.dll in the Cisco WebEx WRF Player 26.x prior to 26.49.32 for Windows, 27.x prior to 27.10.x for Windows, 26.x prior to 26.49.35 for Mac OS X and Linux, and 27.x prior to 27.11.8 for Mac OS X and Linux allows remote malicious users to cause a denial of se...
Cisco Webex 27.00
Cisco Webex 26.00
NA
CVE-2009-2876
Heap-based buffer overflow in atas32.dll in the Cisco WebEx WRF Player 26.x prior to 26.49.32 (aka T26SP49EP32) for Windows, 27.x prior to 27.10.x (aka T27SP10) for Windows, 26.x prior to 26.49.35 for Mac OS X and Linux, and 27.x prior to 27.11.8 for Mac OS X and Linux allows rem...
Cisco Webex 27.00
Cisco Webex 26.00
NA
CVE-2009-2877
Stack-based buffer overflow in ataudio.dll in the Cisco WebEx WRF Player 26.x prior to 26.49.32 for Windows, 27.x prior to 27.10.x (aka T27SP10) for Windows, 26.x prior to 26.49.35 for Mac OS X and Linux, and 27.x prior to 27.11.8 for Mac OS X and Linux allows remote malicious us...
Cisco Webex 26.00
Cisco Webex 27.00
NA
CVE-2009-2878
Heap-based buffer overflow in atas32.dll in the Cisco WebEx WRF Player 26.x prior to 26.49.32 (aka T26SP49EP32) for Windows, 27.x prior to 27.10.x (aka T27SP10) for Windows, 26.x prior to 26.49.35 for Mac OS X and Linux, and 27.x prior to 27.11.8 for Mac OS X and Linux allows rem...
Cisco Webex 26.00
Cisco Webex 27.00
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »