Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
control center vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2019-14599
Unquoted service path in Control Center-I version 2.1.0.0 and previous versions may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Control Center-i
7.2
CVSSv3
CVE-2019-15661
An issue exists in Rivet Killer Control Center prior to 2.1.1352. IOCTL 0x120004 in KfeCo10X64.sys fails to validate parameters, leading to a stack-based buffer overflow, which can lead to code execution or escalation of privileges.
Killernetworking Killer Control Center
2.7
CVSSv3
CVE-2019-15662
An issue exists in Rivet Killer Control Center prior to 2.1.1352. IOCTL 0x120444 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an arbitrary read primitive that can be used as part of a chain to escalate privileges.
Killernetworking Killer Control Center
2.7
CVSSv3
CVE-2019-15663
An issue exists in Rivet Killer Control Center prior to 2.1.1352. IOCTL 0x120404 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an out-of-bounds read that can be used as part of a chain to escalate privileges (issue 1 of ...
Killernetworking Killer Control Center
2.7
CVSSv3
CVE-2019-15664
An issue exists in Rivet Killer Control Center prior to 2.1.1352. IOCTL 0x120404 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an out-of-bounds read that can be used as part of a chain to escalate privileges (issue 2 of ...
Killernetworking Killer Control Center
6.5
CVSSv3
CVE-2022-26668
ASUS Control Center API has a broken access control vulnerability. An unauthenticated remote attacker can call privileged API functions to perform partial system operations or cause partial disrupt of service.
Asus Control Center 1.4.2.5
6.5
CVSSv3
CVE-2022-26669
ASUS Control Center is vulnerable to SQL injection. An authenticated remote attacker with general user privilege can inject SQL command to specific API parameters to acquire database schema or access data.
Asus Control Center 1.4.2.5
9.9
CVSSv3
CVE-2019-18342
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The SFTP service (default port 22/tcp) of the Control Center Server (CCS) does not properly limit its capabilities to the specified purpose. In conjunction with CVE-2019-18341, an unaut...
Siemens Control Center Server
7.2
CVSSv3
CVE-2019-15665
An issue exists in Rivet Killer Control Center prior to 2.1.1352. IOCTL 0x120004 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an arbitrary write primitive that can lead to code execution or escalation of privileges.
Killernetworking Killer Control Center
7.8
CVSSv3
CVE-2022-34443
Dell Rugged Control Center, versions before 4.5, contain an Improper Input Validation in the Service EndPoint. A Local Low Privilege attacker could potentially exploit this vulnerability, leading to an Escalation of privileges.
Dell Rugged Control Center
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »