Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
discovery vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2021-20146
An unprotected ssh private key exists on the Gryphon devices which could be used to achieve root access to a server affiliated with Gryphon's development and infrastructure. At the time of discovery, the ssh key could be used to login to the development server hosted in Amaz...
Gryphonconnect Gryphon Tower Firmware
10
CVSSv2
CVE-2016-7552
On the Trend Micro Threat Discovery Appliance 2.6.1062r1, directory traversal when processing a session_id cookie allows a remote, unauthenticated malicious user to delete arbitrary files as root. This can be used to bypass authentication or cause a DoS.
Trendmicro Threat Discovery Appliance 2.6.1062
2 Metasploit modules
10
CVSSv2
CVE-2016-3236
The Web Proxy Auto Discovery (WPAD) protocol implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandles proxy discovery, which allows remot...
Microsoft Windows 7
Microsoft Windows Server 2008 R2
Microsoft Windows 10 1511
Microsoft Windows 10 -
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Rt 8.1
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2012 -
Microsoft Windows 8.1
10
CVSSv2
CVE-2009-5143
GE Healthcare Discovery 530C has a password of #bigguy1 for the (1) acqservice user and (2) wsservice user of the Xeleris System, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is default, hardcoded, or dependent on another system or ...
Gehealthcare Discovery 530c Firmware -
10
CVSSv2
CVE-2013-7404
GE Healthcare Discovery NM 750b has a password of 2getin for the insite account for (1) Telnet and (2) FTP, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is default, hardcoded, or dependent on another system or product that requires ...
Gehealthcare Discovery Nm 750b
10
CVSSv2
CVE-2014-7232
GE Healthcare Discovery XR656 and XR656 G2 has a password of (1) 2getin for the insite user, (2) 4$xray for the xruser user, and (3) #superxr for the root user, which has unspecified impact and attack vectors. NOTE: it is not clear whether these passwords are default, hardcoded, ...
Gehealthcare Discovery Xr656
Gehealthcare Discovery Xr656 G2
10
CVSSv2
CVE-2003-1603
GE Healthcare Discovery VH has a default password of (1) interfile for the ftpclient user of the Interfile server or (2) "2" for the LOCAL user of the FTP server for the Codonics printer, which has unspecified impact and attack vectors.
Gehealthcare Discovery Vh -
10
CVSSv2
CVE-2014-0540
Adobe Flash Player prior to 13.0.0.241 and 14.x prior to 14.0.0.176 on Windows and OS X and prior to 11.2.202.400 on Linux, Adobe AIR prior to 14.0.0.178 on Windows and OS X and prior to 14.0.0.179 on Android, Adobe AIR SDK prior to 14.0.0.178, and Adobe AIR SDK & Compiler pr...
Adobe Adobe Air Sdk 13.0.0.111
Adobe Adobe Air Sdk 13.0.0.83
Adobe Adobe Air Sdk
Adobe Adobe Air Sdk 14.0.0.110
Adobe Adobe Air 13.0.0.83
Adobe Adobe Air 14.0.0.110
Adobe Adobe Air 13.0.0.111
Adobe Adobe Air
Adobe Flash Player 13.0.0.201
Adobe Flash Player 13.0.0.206
Adobe Flash Player 13.0.0.223
Adobe Flash Player 13.0.0.182
Adobe Flash Player 14.0.0.125
Adobe Flash Player
Adobe Flash Player 14.0.0.145
Adobe Flash Player 13.0.0.214
Adobe Flash Player 11.2.202.378
Adobe Flash Player 11.2.202.356
Adobe Flash Player 11.2.202.310
Adobe Flash Player 11.2.202.297
Adobe Flash Player 11.2.202.262
Adobe Flash Player 11.2.202.261
10
CVSSv2
CVE-2014-0542
Adobe Flash Player prior to 13.0.0.241 and 14.x prior to 14.0.0.176 on Windows and OS X and prior to 11.2.202.400 on Linux, Adobe AIR prior to 14.0.0.178 on Windows and OS X and prior to 14.0.0.179 on Android, Adobe AIR SDK prior to 14.0.0.178, and Adobe AIR SDK & Compiler pr...
Adobe Adobe Air 14.0.0.110
Adobe Adobe Air 13.0.0.111
Adobe Adobe Air
Adobe Adobe Air 13.0.0.83
Adobe Flash Player 14.0.0.125
Adobe Flash Player
Adobe Flash Player 14.0.0.145
Adobe Flash Player 13.0.0.206
Adobe Flash Player 13.0.0.214
Adobe Flash Player 13.0.0.223
Adobe Flash Player 13.0.0.182
Adobe Flash Player 13.0.0.201
Adobe Adobe Air Sdk 13.0.0.111
Adobe Adobe Air Sdk 13.0.0.83
Adobe Adobe Air Sdk
Adobe Adobe Air Sdk 14.0.0.110
Adobe Flash Player 11.2.202.378
Adobe Flash Player 11.2.202.356
Adobe Flash Player 11.2.202.310
Adobe Flash Player 11.2.202.297
Adobe Flash Player 11.2.202.262
Adobe Flash Player 11.2.202.261
10
CVSSv2
CVE-2014-0543
Adobe Flash Player prior to 13.0.0.241 and 14.x prior to 14.0.0.176 on Windows and OS X and prior to 11.2.202.400 on Linux, Adobe AIR prior to 14.0.0.178 on Windows and OS X and prior to 14.0.0.179 on Android, Adobe AIR SDK prior to 14.0.0.178, and Adobe AIR SDK & Compiler pr...
Adobe Flash Player 14.0.0.125
Adobe Flash Player
Adobe Flash Player 13.0.0.201
Adobe Flash Player 13.0.0.206
Adobe Flash Player 14.0.0.145
Adobe Flash Player 13.0.0.214
Adobe Flash Player 13.0.0.223
Adobe Flash Player 13.0.0.182
Adobe Flash Player 11.2.202.341
Adobe Flash Player 11.2.202.336
Adobe Flash Player 11.2.202.280
Adobe Flash Player 11.2.202.275
Adobe Flash Player 11.2.202.243
Adobe Flash Player 11.2.202.238
Adobe Flash Player 11.2.202.378
Adobe Flash Player 11.2.202.356
Adobe Flash Player 11.2.202.310
Adobe Flash Player 11.2.202.350
Adobe Flash Player 11.2.202.346
Adobe Flash Player 11.2.202.291
Adobe Flash Player 11.2.202.285
Adobe Flash Player 11.2.202.258
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »