Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
digi vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-18859
Digi AnywhereUSB 14 allows XSS via a link for the Digi Page.
Digi Anywhereusb\\/14 Firmware 1.93.21.19
NA
CVE-2004-1973
DiGi Web Server allows remote malicious users to cause a denial of service (CPU consumption) via an HTTP GET request that contains a large number of / (slash) characters, which consumes resources when DiGi converts the slashes to \ (backslash) characters.
Digi Www Server Compieuw
1 EDB exploit
NA
CVE-2002-2184
Digi-Net Technologies DigiChat 3.5 allows chat users to obtain the IP addresses of other chat users via a "Showip" parameter in the chat applet.
Digi-net Technologies Digichat 3.5
NA
CVE-2006-4459
Integer overflow in AnywhereUSB/5 1.80.00 allows local users to cause a denial of service (crash) via a 1 byte header size specified in the USB string descriptor.
Digi International Inc Anywhere Usb5 1.80.00
NA
CVE-2014-8997
Unrestricted file upload vulnerability in the Photo functionality in DigitalVidhya Digi Online Examination System 2.0 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in as...
Digitalvidhya Digi Online Examination System 2.0
1 EDB exploit
NA
CVE-2018-201622019
Digi TransPort LR54 suffers from a restricted shell bypass vulnerability that gets a root shell.
8.8
CVSSv3
CVE-2020-9306
Tesla SolarCity Solar Monitoring Gateway up to and including 5.46.43 has a "Use of Hard-coded Credentials" issue because Digi ConnectPort X2e uses a .pyc file to store the cleartext password for the python user account.
Tesla Solarcity Solar Monitoring Gateway
7.5
CVSSv3
CVE-2022-24700
An issue exists in WinAPRS 2.9.0. A buffer overflow in DIGI address processing for VHF KISS packets allows a remote malicious user to cause a denial of service (daemon crash) via a malicious AX.25 packet over the air. NOTE: This vulnerability only affects products that are no lon...
Winaprs Winaprs 2.9.0
8.8
CVSSv3
CVE-2019-11707
A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR < 60.7.1, Firefox < 67.0...
Mozilla Thunderbird
Mozilla Firefox Esr
Mozilla Firefox
1 EDB exploit
6 Github repositories
3 Articles
5.3
CVSSv3
CVE-2020-10136
Multiple products that implement the IP Encapsulation within IP standard (RFC 2003, STD 1) decapsulate and route IP-in-IP traffic without any validation, which could allow an unauthenticated remote malicious user to route arbitrary traffic via an exposed network interface and lea...
Cisco Nx-os 5.2\\(1\\)sk3\\(1.1\\)
Cisco Nx-os 5.2\\(1\\)sk3\\(2.1\\)
Cisco Nx-os 5.2\\(1\\)sk3\\(2.1a\\)
Cisco Nx-os 5.2\\(1\\)sk3\\(2.2\\)
Cisco Nx-os 5.2\\(1\\)sk3\\(2.2b\\)
Cisco Nx-os 5.2\\(1\\)sm1\\(5.1\\)
Cisco Nx-os 5.2\\(1\\)sm1\\(5.2\\)
Cisco Nx-os 5.2\\(1\\)sm1\\(5.2a\\)
Cisco Nx-os 5.2\\(1\\)sm1\\(5.2b\\)
Cisco Nx-os 5.2\\(1\\)sm1\\(5.2c\\)
Cisco Nx-os 5.2\\(1\\)sm3\\(1.1\\)
Cisco Nx-os 5.2\\(1\\)sm3\\(1.1a\\)
Cisco Nx-os 5.2\\(1\\)sm3\\(1.1b\\)
Cisco Nx-os 5.2\\(1\\)sm3\\(1.1c\\)
Cisco Nx-os 5.2\\(1\\)sm3\\(2.1\\)
Cisco Nx-os 5.2\\(1\\)sv3\\(1.1\\)
Cisco Nx-os 5.2\\(1\\)sv3\\(1.2\\)
Cisco Nx-os 5.2\\(1\\)sv3\\(1.3\\)
Cisco Nx-os 5.2\\(1\\)sv3\\(1.4\\)
Cisco Nx-os 5.2\\(1\\)sv3\\(1.4b\\)
Cisco Nx-os 5.2\\(1\\)sv3\\(1.5a\\)
Cisco Nx-os 5.2\\(1\\)sv3\\(1.5b\\)
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3